Sysadmins of the North

Find vulnerable WordPress plugin versions fast using PowerShell

Use PowerShell to find vulnerable WordPress plugin versions hosted on your Windows Server IIS webserver fast, because new vulnerabilities are found on a daily basis. On Windows Server, PowerShell is a perfect tool for this job!

By Jan Reilink 08/05/2020Windows Server

Set PHP handler accessPolicy (Request Restrictions) to Read in IIS

Web application security

Disallow direct access to PHP files in wp-content/uploads/

It's recommended to disallow access to and execution of PHP files in wp-content/uploads folder. Preferably without the use of a security plugin. Blocking access to PHP files in WordPress wp-content/uploads folder is easily achieved with a .htaccess file on Linux Apache, or web.config accesssPolicy in Windows Server IIS, and here is how. Secure your WordPress site with this simple, yet effective, tip!

By Jan Reilink 16/03/2020Web application security

GNU Linux

Bash function to generate a random alphanumeric string

Create a random string in Bash easily. You can use this Bash function in your .bashrc file to generate a random string of alphanumeric characters. This comes in handy when you need to generate a long, secure password for example. Adjust to your needs.

By Jan Reilink 21/02/2020GNU Linux

Windows Server

WMI Filters for Group Policy to manage Windows Server versions

Create effective WMI filters for Group Policy to have a more granular control on specific versions of Windows Server. In this post I provide some basic WMI filter examples to use with Group Policy Objects (GPOs).

By Jan Reilink 27/01/2020Windows Server

Windows Server

Basic Authentication module for Windows Server IIS 10

Basic Authentication managed HTTP module for IIS 10 with virtual users support. In my pursuit of a basic authentication alternative in IIS, other than the built-in Basic Authentication module or Helicon Ape, I came across Devbridge AzurePowerTools. It's apparently one of few HTTP managed modules for IIS that enables HTTP Basic Authentication with support for virtual users.

By Jan Reilink 24/01/2020Windows Server

IIS FTP IP Address and Domain Restrictions

Windows Server

IIS 10.0 FTP IP Security allow list

Configure an IP whitelist for IIS FTP Server using PowerShell. Learn to secure your Windows Server FTP service (FTPSvc)

By Jan Reilink 21/01/2020Windows Server

PowerShell

Removing phantom application folders from website configuration in IIS

Remove phantom application folders from websites in IIS using PowerShell where the physical path on the filesystem was removed. E.g when the application folder "/test1" in the website example.com should point to z:\sites\example.com\www\test1 but was removed. Here is now.

By Jan Reilink 18/12/2019PowerShell

WordPress

Delete spam comments after three (3) days

Here is how to change Akismet interval to three (3) days instead of 15 days for deleting spam comments, using the akismet_delete_comment_interval filter in your WordPress functions.php

By Jan Reilink 09/12/2019WordPress

Windows Server

IIS backup and restore

Easily backup IIS and restore websites and IIS configuration using appcmd.exe or PowerShell.

By Jan Reilink 05/11/2019Windows Server

MySQL

How to fix System.Collections.Generic.KeyNotFoundException “The given key was not present in the dictionary” Exception with MySQL Connector/NET and utf8mb4 character set

An System.Collections.Generic.KeyNotFoundException "The given key was not present in the dictionary" can be the result of using a too old MySQL Connector/NET version in your ASP.NET web application.

By Jan Reilink 18/10/2019MySQL

WordPress

Reduce Wordfence CPU usage, disable Wordfence “Live Traffic View”

Reduce Wordfence and WordPress CPU usage by checking settings and disabling Live Traffic View. This'll improve the performance and speed of your WordPress website.

By Jan Reilink 23/09/2019WordPress

PowerShell

Use -SearchBase with Get-ADComputer for faster results

Using -SeachBase with PowerShell's Get-ADComputer cmdlet gives faster results when querying Active Directory Domain Services (AD DS) with PowerShell. You can use this for your own advantage, here is a little example to speed up AD DS queries.

By Jan Reilink 15/08/2019PowerShell

PowerShell

Install Windows Server Servicing Stack Updates (SSU) using PowerShell

Install Servicing Stack Updates (SSU) for Windows Server 2012R2, 2016 and Windows Server 2019 using PowerShell, without downtime. Because they must be installed prior to normal Windows Server security updates you can install an SSU anytime you want to during the day. Here's a small PowerShell example to do so.

By Jan Reilink 12/06/2019PowerShell

WordPress

Automatically flush Redis cache after publishing a WordPress post

Did you know you can automatically flush opcode caches like Redis when you publishing a post or page in WordPress? Doing so ensures you and your visitors see the newly created content immediately. No more stale / cached content in WP

By Jan Reilink 04/04/2019WordPress

Windows Server

Setting up Monit monitoring in Windows Subsystem for Linux WSL

How to install and configure Monit monitoring in Windows 10 WSL. Set up a Monit monitoring service for your websites and services. A couple of years ago, I wrote a blog article about setting up Monit monitoring on an Ubuntu VM on Hyper-V. Now it's time to do the same, but then in Windows Subsystem for Linux, or WSL. For this, I use Ubuntu.

By Jan Reilink 10/03/2019Windows Server

Sysadmins of the North

Disable ECDH public server param reuse in Windows Server IIS

Create strong passwords in Windows

Install IIS in Windows 11 using PowerShell

Find vulnerable WordPress plugin versions fast using PowerShell

Disallow direct access to PHP files in wp-content/uploads/

Bash function to generate a random alphanumeric string

Basic Authentication module for Windows Server IIS 10

IIS 10.0 FTP IP Security allow list

Removing phantom application folders from website configuration in IIS

Delete spam comments after three (3) days

IIS backup and restore

How to fix System.Collections.Generic.KeyNotFoundException “The given key was not present in the dictionary” Exception with MySQL Connector/NET and utf8mb4 character set

Reduce Wordfence CPU usage, disable Wordfence “Live Traffic View”

Use -SearchBase with Get-ADComputer for faster results

Install Windows Server Servicing Stack Updates (SSU) using PowerShell

Automatically flush Redis cache after publishing a WordPress post

Setting up Monit monitoring in Windows Subsystem for Linux WSL

Windows Server

Web applications

PowerShell