I want to block access to xmlrpc.php to all traffic on all dozen or so sites hosted on my droplet– Ubuntu 16.04, Apache.
I used this command to search for attempts to access this file:
grep xmlrpc /var/log/apache2...
It's good that you've blocked the xmlrpc attack using the Apache configuration file, because in this way you're protecting all of your sites again this attacks.
If you're seeing 403 statuses in...
When setting up the SSL cert, I provided an email address for lost key recovery and notices, but now I'd like to change that email. What's the command for doing so? Can I update multiple SSL certs at once? Thanks!
When setting up the SSL cert, I provided an email address for lost key recovery and notices, but now I'd like to change that email.
It depends on which ACME client you're using.
With Certbot, it's "certbot register --...
I'm not trying to run my own mail server, so email for this domain is hosted elsewhere. But, of course, Wordpress needs to send email (woocommerce orders, password reset notifications, contact forms etc) from the doma...
The issue is that by default, WordPress uses PHP's mail() function and nothing more. Mail sent using this function is inevitably going to end up in spam/junk due to the fact that there's no authoriz...
I edited my conf file for the site I had messed with, and deleted the following lines which I had earlier added:
After rebooting my droplet for the first time (using shutdown -h now from the command line, then powering on again from the control panel), I was able to ssh into my droplet again as normal, but all sites powered by t...