There appears to be an incompatibility between the Pen theme and the popular Simple Calendar plugin. The issue is visible on the calendar schedule on site mockup.udance.com.au using the Pen theme. Summary details are missing when hovering over a calendar entry. Google Chrome version 86.0.4240.75 on both a Windows 10 desktop and Pixel 3 XL …
Continue reading WordPress: Pen Theme 1.3.9 and Simple Calendar Plugin 3.1.33 Anomaly
Tag:wordpress
WordPress: Setting up a Redis Object Cache
This post assumes you’ve run at least version 1.4.2 of the Scripted WordPress Installation. Install and activate the WordPress Redis Object Cache plugin. Click on Enable Object Cache in the plugin settings. You should see the following screen: If you don’t see this screen, click on the diagnostics tab. This may provide some clues as …
Continue reading WordPress: Setting up a Redis Object Cache
Securing phpMyAdmin in a WordPress Jail
This post assumes you’ve run at least version 1.3.0 of the Scripted WordPress Installation. In the post WordPress Script: Post-Installation Tasks, I suggest that a way of securing phpMyAdmin in a WordPress jail is to disable it when not in use. One way to disable phpMyAdmin is to unlink it in the jail rm /usr/local/www/wordpress/phpmyadmin. This …
Continue reading Securing phpMyAdmin in a WordPress Jail
Wordfence: Site Compromised
So, while I’ve been busy hardening my blog site blog.udance.com.au, by stealth, hackers appear to have been busy on the WordPress site attached to the main domain udance.com.au. The tell-tale signs suggest that the site appears to be compromised. As there’s no content yet on this site, the easiest thing to do is blow it …
Continue reading Wordfence: Site Compromised
Wordfence: “You keep on knockin’ but you can’t come in”
Here’s a little something to listen to while you read this post. It’s appropriate for this post. Wordfence is effectively blocking blocking attempts to log in using invalid usernames. Refer to the post WordPress Plugin: Wordfence logging lots of failed login attempts for further details. However, there’s someone sneaky who is quietly trying to log …
Continue reading Wordfence: “You keep on knockin’ but you can’t come in”
Incident Management
Gone are the days when I could shout out to the family ‘I’m just going to reboot the server. Get off now!’ Since exposing several LAN resources such as Nextcloud and WordPress to the internet, I’ve come to realise there’s a whole customer base who have to be considered prior to causing any disruption to …
Continue reading Incident Management
WordPress Plugin: Wordfence logging lots of failed login attempts
It’s scary to see a WordPress site being probed for vulnerabilities Dashboard > Wordfence > Tools > Live Traffic Most are for invalid users blog and admin. As part of tuning Wordfence, block these immediately Dashboard > Wordfence > All Options > Brute Force Protection Activity detail reflects the change:
WordPress Plugin: A Marriage made in Heaven for UpdraftPlus and FreeNAS
The goal here is to use FreeNAS storage to store UpdraftPlus backups of WordPress sites. Local user authentication is assumed for FreeNAS. Outline of the basic steps: A. Set up the UpdraftPlus storage root. Set aside storage space on FreeNAS for UpdraftPlus. Create the UpdraftPlus user and group on FreeNAS. Configure and start the FTP …
Continue reading WordPress Plugin: A Marriage made in Heaven for UpdraftPlus and FreeNAS
Scripted WordPress Installation
If the statistics are to be believed, in 2020: WordPress powers 35% of the internet. Around 60% of CMS sites are WordPress. Around 28% of WordPress sites run e-commerce. Around 75% of hacked CMS sites were built on WordPress 😢 There are few current guides in the iXsystems Community Forum for setting up WordPress and none …
Continue reading Scripted WordPress Installation
WordPress Plugin: WP Super Cache
When installing and activating, you will see the following errors: Assuming your jail name is wordpress, enter the jail from a terminal iocage console wordpress. To resolve the first issue, enter the following commands in the terminal: cd /usr/local/www/wordpress/wp-content cp plugins/wp-super-cache/wp-cache-config-sample.php wp-cache-config.php chown www:www wp-cache-config.php Refreshing WP Super Cache on the dashboard: Edit wp-config.php ee …
Continue reading WordPress Plugin: WP Super Cache