Category: Security

Keeping safe

3 Ways to Prevent Email Abuse

*  This post was originally posted on July 12, 2016, and has been updated for accuracy.  Over 100 billion emails get sent per day. Everything from out-of-office alerts to billing summaries gets transferred across the

How to Lock User Accounts After Failed Login Attempts

This guide will show how to lock a system user’s account after a specifiable number of failed login attempts in CentOS, RHEL and Fedora distributions. Here, the focus is to enforce simple server security by

How to Enable or Disable SELinux Boolean Values

by Aaron Kili | Published: October 23, 2017 | Last Updated: October 25, 2017 Security-Enhanced Linux (SELinux) is a security mechanism for mandatory access control (MAC) implemented in the Linux kernel. It is a flexible

H

How To Protect Hard and Symbolic Links in CentOS/RHEL 7

In Linux, hard and soft links are referenced to files, which are very important, if not protected very well, any vulnerabilities in them can be exploited by malicious system users or attackers. A common vulnerability

TMOUT – Auto Logout Linux Shell When There Isn’t Any Activity

by Aaron Kili | Published: October 7, 2017 | Last Updated: October 9, 2017 How often do you leave a Linux system idle after login; a situation which can be referred to as an ‘idle

How to Protect Images On Your Site (+ What To Do After Theft)

Unfortunately, as the internet grows, image theft becomes more and more common. As a content creator ourselves, we have to deal a lot with this reoccurring issue here at Kinsta. There is nothing worse than

The Complete WordPress GDPR Guide: What Does the New Data Regulation Mean for Your Website, Business and Data?

TL;DR: The GDPR is a new regulation by the EU. It changes a lot regarding how each and every WordPress site goes about doing their business. Even non EU-based sites and businesses are affected. You

How to Stop a DDoS Attack in Its Tracks (Case Study)

In our last case study, we showed you how we cleaned up a negative SEO attack on Kinsta. Today we are going to show you some steps and troubleshooting we took to stop a DDoS

WordPress 4.7.4 and the ‘noopener noreferrer’ attribute

Some of you may have noticed that after you upgrade to WordPress 4.7.4, when you edit a post using the visual editor tab and add an internal link (a link to another page or post

Email Authentication – Don’t Let Your Emails End Up in Spam

The dreaded spam folder. One thing all businesses try to avoid when it comes to sending out emails. Winding up in the spam folder can drastically diminish your total number of email opens, which in

How to Safely Enable WordPress SVG Support (2 Simple Clicks)

SVG is an XML-based vector image which is commonly used by websites and brands to display logos and icons on their websites. The main reason they are especially popular among developers and designers is that they

Free SSL Hosting From Kinsta With Let’s Encrypt Integration

Kinsta has a Let’s Encrypt integration, which means free SSL hosting and certificates for all of your WordPress sites. The certificate renewal process is completely automated, which in turn saves you money and time. You can

Why Premium DNS is No Longer Optional

You’ve probably heard the term “premium DNS” thrown around before and maybe you didn’t give it a second thought. Most people know that using a premium DNS provider can help them but don’t take the

WordPress Security – 19+ Steps to Lock Down Your Site

When it comes to WordPress security, there are a lot of things you can do to lock down your site to prevent hackers and vulnerabilities from affecting your business or blog. The last thing you

How to Secure Network Services Using TCP Wrappers in Linux

In this article we will explain what TCP wrappers are and how to configure them to restrict access to network services running on a Linux server. Before we start, however, we must clarify that the

An Overview of TLS 1.3 – Faster and More Secure

It has been over eight years since the last encryption protocol update, but the final version of TLS 1.3 has now been published as of August 2018. ? The exciting part for the WordPress community and

4 Useful Tips to Secure PhpMyAdmin Login Interface

Normally, advanced users prefer to use and manage MySQL database management system from its command prompt, on the other side, this method has proved to be a great challenge for relatively new Linux users. Therefore,

How to Disable root Login Access to PhpMyAdmin

If you are planning on using phpmyadmin on a regular basis to manage your databases over the network (or worse, over the Internet!), you don’t want to use the root account. This is valid not

How to Add an Extra Layer of Security on PhpMyAdmin Login Interface

MySQL is the world’s most used open source database management system on the Linux ecosystem and at the same time Linux newbies find it difficult to manage from the MySQL prompt. PhpMyAdmin was created, is

CVE-2016-6309 – Patching NGINX for OpenSSL Security Issues

Security is of the utmost importance to us here at Kinsta. That is one reason why we recently launched two-factor authentication to secure your Kinsta accounts. Over the past week there have been some serious