If the statistics are to be believed, in 2021:
This script will create a jail, install the latest version of WordPress from wordpress.org along with all its dependencies, and store the WordPress database and data, including themes and plugins, outside the jail, where they can be better managed.
There is one caveat. This is not an independent module. The WordPress jail created by this script is designed to operate behind a reverse proxy. If you don't already have a reverse proxy in place, there are at least two available in the forum's Resources section that you might like to consider:
Acknowledgements: @danb35 - This scripted resource is based on the pioneering work done on the Nextcloud scripted resource. Both resources serve PHP files.
Q & A
Q1. What major component versions does the script use?
Q2. What is this resource's scope?
The assumption is that the local network is trusted so unencrypted (HTTP) communication is considered acceptable on the LAN. External (HTTPS) access to the WordPress service is granted via a reverse proxy.
Q3. Is this resource secure?
While the script together with the post-installation steps provide an initial, stable starting base, it remains your responsibility to secure your WordPress site properly to reduce the odds of getting hacked. It is also your responsibility to ensure that you have measures in place to recover your WordPress site in the event you are hacked. Refer to the WordPress article Hardening WordPress for further guidance.
Click on the
button on this page to read about some of my own adventures, and misadventures, in hardening WordPress.
- WordPress powers 40% of the internet.
- Around 64% of CMS sites are WordPress.
- Around 28% of WordPress sites run e-commerce.
- Around 75% of hacked CMS sites were built on WordPress
This script will create a jail, install the latest version of WordPress from wordpress.org along with all its dependencies, and store the WordPress database and data, including themes and plugins, outside the jail, where they can be better managed.
There is one caveat. This is not an independent module. The WordPress jail created by this script is designed to operate behind a reverse proxy. If you don't already have a reverse proxy in place, there are at least two available in the forum's Resources section that you might like to consider:
- Reverse Proxy using Caddy (with optional automatic TLS) authored by @danb35
- How to set up an nginx reverse proxy with SSL termination in a jail authored by @samuel-emrys
Acknowledgements: @danb35 - This scripted resource is based on the pioneering work done on the Nextcloud scripted resource. Both resources serve PHP files.
Q & A
Q1. What major component versions does the script use?
| Date | Script | WordPress | MariaDB | PHP | Caddy | Redis | phpMyAdmin | WP-CLI |
|---|---|---|---|---|---|---|---|---|
2020-09-22 | 5.5.1 | 10.3 | 7.4 | 2.1.1 | | |||
2020-09-25 | 2.2.0 | |||||||
2020-09-28 | 5.0.2 | |||||||
2020-10-05 | | 5.0.9 | ||||||
2020-10-15 | 2.2.1 | |||||||
2020-10-26 | 10.4 | |||||||
2020-10-26 | 10.5 | |||||||
2020-11-29 | 5.5.3 | 2.4.0 | ||||||
2021-01-01 | 5.6 | 2.3.0 | ||||||
2021-04-25 | 5.7.1 | 10.5.9 | 7.4.16 | 6.0.12 | 5.1.0 | |||
2021-09-19 | 5.8.1 | 10.5.12 | 7.4.23 | 2.4.1 | 6.0.15 | | 2.5.0 |
Q2. What is this resource's scope?
The assumption is that the local network is trusted so unencrypted (HTTP) communication is considered acceptable on the LAN. External (HTTPS) access to the WordPress service is granted via a reverse proxy.
Q3. Is this resource secure?
While the script together with the post-installation steps provide an initial, stable starting base, it remains your responsibility to secure your WordPress site properly to reduce the odds of getting hacked. It is also your responsibility to ensure that you have measures in place to recover your WordPress site in the event you are hacked. Refer to the WordPress article Hardening WordPress for further guidance.
Click on the
