التصنيفات

مقالات ضمن WordPress

WordPress-specific incidents, plugins, wp-cron, xmlrpc, and tuning.

10 مايو 2026قراءة 8 دقيقة
Hardening every WordPress site on cPanel in one loop
A field-tested bash loop that walks every cPanel user, finds every WordPress install, and applies an idempotent hardening checklist with weekly drift detection.
#wordpress #cpanel #hardening #bash #security
9 مايو 2026قراءة 6 دقيقة
When you have to suspend a WooCommerce client: anatomy
A WooCommerce client burned 40-60% CPU on a shared cPanel box for 48 hours, unreachable. The decision tree, the suspension, and the conversation after.
#cpanel #woocommerce #shared-hosting #incident-response #runbook
8 مايو 2026قراءة 14 دقيقة
Patchman activation breaks PHP sites: memory_limit gotcha
Patchman daily scans on cPanel push large WordPress sites past the PHP memory_limit and trigger 500s. Diagnostic flow, two-part fix, pre-activation audit.
#patchman #cpanel #php #memory-limit #wordpress #multiphp
7 مايو 2026قراءة 8 دقيقة
The corrupted WordPress db.php dropin nobody warned you of
WordPress says the DB connection is down but MySQL is fine, and only one site is affected. The cause is almost always a broken db.php dropin in wp-content.
#wordpress #mysql #cpanel #incident-response #dropins
2 مايو 2026قراءة 14 دقيقة
xmlrpc.php abuse and the 27-site one-shot fix on cPanel
A postmortem on 5,400 xmlrpc.php requests an hour from one /24, why per-site plugin fixes fail, and the shell loop that hardened 27 WordPress sites at once.
#xmlrpc #wordpress #cpanel #php-fpm #csf #htaccess
30 أبريل 2026قراءة 16 دقيقة
Three real WordPress compromises and how we found them
Three anonymised WordPress compromise postmortems on cPanel: a nulled Elementor Pro backdoor, a wp_options casino injection, and a six-week data exfiltration.
#wordpress #malware #cpanel #incident-response #wp-cli #forensics
25 أبريل 2026قراءة 15 دقيقة
WooCommerce filter URLs are a crawler trap: the fix
A 2026 postmortem on WooCommerce filter URLs as a crawler trap: 41,000 unique URLs/hour from Facebook and MJ12bot, the diagnostic, and a three-layer fix.
#woocommerce #facebook-crawler #mj12bot #cpanel #mod-security #faceted-navigation
22 أبريل 2026قراءة 17 دقيقة
WordPress WP-Cron stacking on cPanel: a complete fix
A 2026 postmortem on WordPress WP-Cron stacking on cPanel: 41 concurrent PHP-FPM children, the HTTP loopback that doubles load, and the three-layer fix.
#wp-cron #wordpress #php-fpm #cpanel #ea-php
17 أبريل 2026قراءة 2 دقيقة
Disable WP-Cron across every WordPress site on cPanel
An idempotent bash script that disables WP-Cron across every WordPress install on a cPanel server and replaces it with staggered system cron entries.
#wordpress #wp-cron #cpanel #bash