Test SMTP authentication and StartTLS
...Transfer Protocol whereby an SMTP client may log in using an authentication mechanism chosen among those supported by the SMTP server. What is Transport Layer Security (TLS)? Transport Layer Security...
Search Results for security
Redirect HTTP to HTTPS
...<httpRedirect enabled="false" destination="https://example.com" httpResponseStatus="Permanent" /> Don’t forget to enable HTTP Strict-Transport-Security (HSTS) on IIS. HSTS improves security and prevents man-in-the-middle attacks, downgrade attacks, and cookie-hijacking. And there are a number...
Create an additional SQL Server Login
Sometimes you need to create an additional SQL Server Login (user) for your database (databases). Here is a small T-SQL snippet that creates such a login for contained databases in...
Install Windows Updates using PowerShell
...for Windows Defender Antivirus - KB2267602 (... 2 DESKTOP-J... Downloaded KB2267602 574MB Security Intelligence Update for Windows Defender Antivirus - KB2267602 (... 3 DESKTOP-J... Installed KB2267602 574MB Security Intelligence Update...
Don’t turn off CURLOPT_SSL_VERIFYPEER and fix your PHP configuration
...in Survive The Deep End: PHP Security: Release 1.0a1 (PDF): […] The options here are somewhat obvious, configuring PHP to use SSL properly is added complexity that programmers are tempted...
Protect WordPress from brute-force XML-RPC attacks
...file. All other IP addresses are blocked. The location tag means the rules only apply to the path mentioned. In this case the file xmlrpc.php. <location path="xmlrpc.php"> <system.webServer> <security> <ipSecurity...
Huge increase in WordPress xmlrpc.php POST requests
...); return $methods; } add_filter( 'xmlrpc_methods', 'saotn_remove_xmlrpc_pingback' ); Update WordPress – security release 3.9.2 fixes XML-RPC DoS Update 2014-08-07: Both WordPress and Drupal released security updates to fix an XML-RPC...
Disk Cleanup in Windows Server
...with DISM /Online /Cleanup-Image, PowerShell Install-WindowsFeature and SFC /scannow Some reports are available explaining Microsoft Security Bulletin MS14-046 broke DISM /Online /Cleanup-Image /RestoreHealth, PowerShell Install-WindowsFeature with -Source parameter, and SFC...
How to remove IIS from Windows Server using PowerShell
...from Windows Server Improving Security by Reducing Attack Surface š IIS is a full-featured web stack – including HTTP, FTP, SMTP modules, logging, authentication systems, and more. If you’re not...
Send email with PowerShell
Easily send your DevOps reporting by email with this PowerShell function, because the Send-MailMessage cmdlet is obsolete. Of course you’ll be using StartTLS and authenticated SMTP as additional security. If...
Send authenticated SMTP email over TLS from WordPress
I was surprised WordPress is not able to send email using an SMTP server out-of-the-box. Not to mention using TLS transport for security. A quick Google search showed me multiple...
Enable NTFS long paths through GPO in Windows Server
...modern Windows-based operating system (OS). It provides advanced features, including security descriptors, encryption, disk quotas, and support for rich metadata, enhancing both security and data management. Additionally, NTFS seamlessly integrates...
Block brute force attacks on SQL Server, block IP addresses in Windows Firewall using PowerShell
...Server’s firewall. This PowerShell solution blocks IP addresses that are trying to brute force your SQL Server logins, by blocking IP addresses in Windows Defender Firewall with Advanced Security. Microsoft...
Akal Premium WordPress theme XSS vulnerability
...provides no additional security. In the developers documentation we find the source, and the relevant part is on lines 205 – 207: if ( false === strpos( $content, '[' )...
My WordPress web.config
...www.saotn.org/web-applications/filter-web-traffic-with-blacklists/ @ www.saotn.org/windows-server/iis-10-ftp-ip-security-allowlist/ --> <location path="wp-login.php"> <system.webServer> <security> <!-- this line blocks all IP addresses, except those listed below --> <ipSecurity allowUnlisted="false"> <add ipAddress="203.0.113.15" allowed="true" /> <add ipAddress="203.0.113.16" allowed="true" />...
MySQL Connector/NET 6.5 in partial trust
...trust To prevent Security Exceptions, this SecurityClass and IPermission must be configured in the web_mediumtrust.config file. Open the file (C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\web_mediumtrust.config) and add: <securityclass Name="MySqlClientPermission" Description="MySql.Data.MySqlClient.MySqlClientPermission, MySql.Data, Version=6.5.4.0, Culture=neutral, PublicKeyToken=c5687fc88969c44d" />...
Install OpenSSH in Windows Server
...-LocalPort 22 ` -Program "C:\Windows\System32\OpenSSH\sshd.exe" Replace C:\Windows\System32\OpenSSH\sshd.exe with the actual path to the sshd.exe (C:\OpenSSH\sshd.exe, if you followed these instructions). Or go to Control Panel > System and Security >...
Windows 11 and WSL 2 DevOps environment
...pop-up asking you to tap your YubiKey. Windows Security: Touch your security key Sweet! š Reuse SSH connections If you connect and disconnect a lot, for example you’re git pull‘ing...
Install Windows Server Servicing Stack Updates (SSU) using PowerShell
...and Windows Server 2019 using PowerShell, without downtime. Because they must be installed prior to your normal Windows Server security updates, you can install them anytime you want to during...
Optimize(d) WordPress hosting (9+ practical tips)
...issues! This post tackles most of your performance issues, by explaining important configuration settings for PHP & MySQL, server, security, and so on. Discover how this very blog has optimized...
