Server security. Prevent hacker attacks...

Posted September 9, 2014 6.3k views


I have configured the Cloud in the following way:

Step 1 - I installed Linux, nginx, MySQL, PHP (LEMP) as shown in this guide:

Steep 2 - I installed Phpmyadmin as shown in this guide:

Cloud on I will use a site based on Wordpress.
With this configuration, the server is secure? What safety measures should I install to increase security? I’m worried.

Thank you so much!

1 comment

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Submit an Answer
3 answers

One of the most important things you can do in order to keep WordPress safe is make sure it is kept up to date. Many websites get compromised by using known exploits that have already been fixed. People scan the internet looking for older versions of software to use the known vulnerabilities.

Keeping everything else on the server up to date is also important. You should regularly log in and apply security updates on the server.

Some more general tips:

by Shaun Lewis
Learn how to setup a firewall with UFW on an Ubuntu / Debian cloud server.

Along with the advice above about ssh-keys change the port that ssh listens on. On a debian system the setup is in /etc/ssh/sshd_config. Should be the same on other flavors of Linux. Also you may want to install a firewall like shorewall to shut down all ports that you don’t use just in case there is a mistake in a setting somewhere that would open up a service to the outside by mistake. Also look into ssh port forwarding that would allow you to connect to services that you have blocked to the outside over a secure link.