Here is how to bulk add IP addresses in the Windows Firewall, list an IP address and remove all IP addresses from Windows Defender Firewall with Advanced Security. In Windows 11, 10 and Windows Server
This PowerShell solution blocks IP addresses that are trying to brute force your SQL Server logins, by blocking IP addresses in Windows Defender Firewall with Advanced Security, using PowerShell. You can use this to create your own solution to block offending IP addresses in SQL Server’s firewall.
Here is how to (temporarily) turn off routine remediation in Windows Defender Antivirus (WinDefend). During the transition of antivirus software to Windows Defender Antivirus (WinDefend), I don’t want Windows Defender remediation on threats it might find. Later, when I have more information about potential threats, I can always choose to remediate that threat, e.g. quarantaine or remove it.
Install IIS Manager in Windows 10 and Windows 11. Learn how to install and configure IIS Manager (InetMgr) for Remote Administration of your Windows Server IIS web server, in Windows 11/10. You can use IIS Manager to administer various components of your website through a graphical user interface (GUI), if it’s hosted in IIS. This post also shows how to install IIS Web Management Service (WMSVC) on Server Core using PowerShell.
Learn how to enable HSTS (HTTP Strict Transport Security) in Linux Apache .htaccess. I wrote about enabling HTTP Strict Transport Security (HSTS) in IIS earlier. But what about enabling HSTS in Apache .htaccess? Here is how.
How to install OpenSSH Server in Windows Server Core using PowerShell. In this tutorial, you’ll learn how to install Microsoft SSH Server in Windows Server 2022 and below (2019, 2016, 2012 R2). OpenSSH is an ideal and secure way of performing remote maintenance & administration on your servers. Even on Windows Server!
Securing privileged access is a critical first step to establishing security assurances for business assets in a modern organization. The security of most or all business assets in an IT organization depends on the integrity of the privileged accounts used to administer, manage, and develop. Cyber-attackers often target these accounts and other elements of privileged access to gain access to data and systems using credential theft attacks
Use PowerShell to find vulnerable WordPress plugin versions hosted on your Windows Server IIS webserver fast, because new vulnerabilities are found on a daily basis. On Windows Server, PowerShell is a perfect tool for this job!
It’s recommended to disallow access to and execution of PHP files in wp-content/uploads folder. Preferably without the use of a security plugin. Blocking access to PHP files in WordPress wp-content/uploads folder is easily achieved with a .htaccess file on Linux Apache, or web.config accesssPolicy in Windows Server IIS, and here is how. Secure your WordPress site with this simple, yet effective, tip!
Basic Authentication managed HTTP module for IIS 10 with virtual users support. In my pursuit of a basic authentication alternative in IIS, other than the built-in Basic Authentication module or Helicon Ape, I came across Devbridge AzurePowerTools. It’s apparently one of few HTTP managed modules for IIS that enables HTTP Basic Authentication with support for virtual users.
Whenever WordPress is using a lot of CPU and you have Wordfence Security plugin enabled, it is recommended to double check some settings. Unfortunately the Wordfence “Live Traffic Options” (“Traffic logging mode”) feature can cause high CPU usage and load issues for WordPress websites. Therefore, I recommend you disable this feature to improve the performance of your WordPress website.
Install Servicing Stack Updates (SSU) for Windows Server 2012R2, 2016 and Windows Server 2019 using PowerShell, without downtime. Because they must be installed prior to normal Windows Server security updates you can install an SSU anytime you want to during the day. Here’s a small PowerShell example to do so.
This article provides you with a couple of ASP.NET to SQL Server connectionstring examples for ODBC and OLE DB. And as a bonus for ASP to SQL Server, MySQL, and SSL encrypted connections too.
There is another VERY IMPORTANT THING with Microsoft Meltdown patches like update KB4056892: – Customers will not receive these security updates and will not be protected from security vulnerabilities unless their anti-virus software vendor sets the following registry key:
Secure WordPress against XML-PRC attacks. This post gives you some insights about how you can create an IP whitelist for xmlrpc.php, on Windows Server and Linux Apache (web.config and .htaccess). And how you can block access to xmlrpc.php file.