[AusNOG] Borrowed addresses, data retention, court orders

Chad Kelly chad at cpkws.com.au
Mon Jan 30 18:44:58 EST 2017


On 1/30/2017 10:34 AM, ausnog-request at lists.ausnog.net wrote:
> Apparently so... screw Wordpress... bloody nightmare to manage.

Not if you have the right tools in place.

Generally now a days you can automate the security updates for Wordpress 
so you don't even need to think about it.

Plus you should be using other security measures such as Mod_security 
and things like Fail 2 Ban.

https://modsecurity.org/about.html

and fail2ban.org

Those two tools alone with decent configs will nuke anything that tries 
to hack in.

For extra security on top of that you can use CXS, which will scan for 
things like scripts containing malware and quarantine them so that if 
something does manage to get in it doesn't affect your online presence.

https://configserver.com/cp/cxs.html i've been using the Config Server 
tools for years now.

With those tools and Mod_security configured properly you don't need the 
extra security plugins for Wordpress specifically.


When I checked a few hours ago the ISP Guy site was still infected and 
was redirecting to another site.

Regards Chad.



-- 
Chad Kelly
Manager
CPK Web Services
web www.cpkws.com.au
phone 03 9013 4853



More information about the AusNOG mailing list