Last Updated on April 2, 2024 EDT by Gina
Quick Hit List
Disable XMLRPC
You can do so easily with a single SSH commandCopy
gp site {site.url} -disable-xmlrpc
Enable Fail2Ban for WordPress Login Attacks
Enable fail2ban for WordPress sites under login attacks.Copy
gp stack -enable-fail2ban-jail wp-login 5 1200
gp site {site.url} -enable-wp-fail2ban
Notes
In these situations, it’s always good to fire up something that goes through your Nginx logs. A good tool is GoAccess https://goaccess.io/
However, it’s going to analyze your logs and report back versus real-time analysis. That’s where you could use ngxtop https://github.com/lebinh/ngxtop
But ngxtop doesn’t allow for multiple files to be used. So you can’t see all your sites on your server and what they’re doing.
You could ship the logs to a service that would provide you further details and be slightly on-demand. However it won’t take into consideration if a single request or two requests are causing a load.
In-fact all of the above options will only show you if you have a client sending too many requests.
If you want to see if a single or multiple requests are increasing the load on your server. Newrelic would be the best bet.
Last Updated on April 2, 2024 EDT by Gina
Jordan Trask
With 20 years of experience in technology spanning Linux, Data Center Infrastructure, and related services and applications, Jordan consults with small, medium, and large organizations tackling technology problems and needs. With 10 years of experience in WordPress, he’s created Managing WP as a means of dumping his brain on the web.
Jordan operates LMT Solutions providing Technology Consulting Services and We Power WP for WordPress Care Plans and Support.
Last Updated on April 2, 2024 EDT by Gina
Comments are closed.