Security Strategies and Tools

Security is at the heart of everything we do here at GridPane, and we have some very cool features that you can use to secure each and every one of your websites. The goal of this learning path is to give you a clear path forward for securing all the websites that you host on your GridPane provisioned servers.

Part 1

GridPane Default Security and Additional Options

GridPane takes care of a lot of security out-of-the-box, and we provide a suite of tools that you can use to secure your websites even further. Learn all about it here.

Read Article

Part 2

The OWASP Top 10 and GridPane WordPress Security Options

A list of the 10 most common website/application vulnerabilities compiled by OWASP and how GridPane helps our clients protect themselves. Contributed by Thomas Raef.

Read Article

Part 3

Securing Multiple Banking Websites Built on WordPress

Learn exactly what one of our team members did to secure multiple banking websites on our platform.

Read Article

Part 4

WordPress Website Hardening for Nginx and OpenLiteSpeed (OLS)

This article will teach you how to use our GP-CLI to lock down your websites for server-level security.

Read Article

Part 5

Configuring Fail2Ban to Prevent Brute Force Attacks

Fail2Ban is an extremely effective security tool. This article will teach you how to implement it on your websites.

Read Article

Part 6

Connecting Fail2Ban to Cloudflare

Now that you’ve implemented Fail2Ban, this article will teach you how to connect it with Cloudflare so that it works across all your servers.

Read Article

Part 7

Cloudflare Firewall Rules for Securing WordPress Websites

Cloudflare provides an excellent free service. If you’re using them for the websites you manage this article will help you get the most out of your account.

Read Article

Part 8

An Introduction to Maldet and ClamAV Malware Scanning

Maldet and ClamAV work by scanning your servers looking for signatures of thousands of instances of known malware. It’s a highly effective detection tool that’s available on Developer accounts.

Read Article

Part 9

Moving a Website that’s had a malware infection

If you find out that one of your sites has experienced a Malware infection, this is a quick guide for how to proceed.

Read Article

Part 10

How to create a Content Security Policy (CSP Header)

A CSP is a widely supported security standard that can help you prevent injection-based attacks by fine-tuning what resources a browser is allowed to load on your website.

Read Article