Unmanaged hosting requires some practical experiences with servers…
Configure SSH keys! None can hack!
These are one of the security practice but it will not fully protect your servers from hackers… It requires some additional security techniques…
I can’t explain here for more details read security guidelines provided by PCI DSS, HIPAA and NIST.
Considering I have SSH keys and Cloudflare configure with my WordPress blog, none can hack my server, unless my laptop is hacked or I am leaking my server information intentionally!
Security guidelines by PCI DSS, HIPAA and NIST are written in pure technical language it requires some practical interaction with servers to fully understand the security practices and implement this to servers.
That’s why “Cloudways” like companies are running now a days…
These are bad assumptions…
People who go for managed platform are kind of scared to manage it! Even I was when i started! But after knowing the facts, how to manage, it is kid’s stuff!
I challenge anyone to hack my server! I will pay that guy, who can hack my server!
If these are bad assumptions, then tell me the right assumptions! Be practical!
You are in a wrong assumptions.
In a dark world, this is a pretty easy task…
First ask question yourself no one can secure 100% in digital world.
Bigger companies spend billions for their security…
Amazon Web Service: https://aws.amazon.com/choosing-a-cloud-platform/#security
They perform regular security audit of their servers…
Then, tell me the right assumptions dude, which can be practically implemented. No rhetoric, please!
Hack my wordpress website, i can send the website link in PM! I am ready to pay also anyone!
Whole world knows that!
Most of the people in this forum are running WordPress! Stick with that, please!
Telling all possible security practices is not possible here. It is a too lengthy process…
I deserve to know at least couple of it! Except, SSH keys, Cloudflare, Ubuntu Firewall!
Awesome Tutorial… I am surely going to try this as I was travelling with cPanel based servers, it’s time to take diversion for the faster track.
Are you supporting installing WordPress using third party one click installers and giving them authority to screw all my sites at once?
If someone wants to hack your site he will.
Update:- Don’t forget to increase upload_max_filesize to avoid any trouble (like uploading big theme).