Add X-Frames-Options in Drupal 8 with the Security Kit Module

Date: December 4, 2019          1 Minute to Read The X-Frame-Options HTTP header specifies whether your Drupal website can be displayed within other websites with the <frame>, <iframe>, <object>, or <embed> HTML tags. This improves Drupal security against clickjacking and related cyber attacks. Below we’ll cover how to install the Security Kit module and enable X-Frames-Options. Mozilla Read More >

Add HSTS in Drupal 8 with the Security Kit Module

Date: December 4, 2019          1 Minute to Read Adding HSTS (HTTP Strict Transport Security) in Drupal 8 forces web browsers to only load your website with a valid SSL certificate. This improves Drupal security against downgrade attacks and similar man-in-the-middle (MITM) attacks. HSTS is similar to a HTTP to HTTPS redirect but within the browser. Below Read More >

Add Content-Security-Policy (CSP) in Drupal 8

Date: December 3, 2019          2 Minutes to Read The Content-Security-Policy Drupal module helps you configure a Header set Content-Security-Policy header to specify what sources your website should load scripts from – (e.g. your own website, embedded YouTube video, and analytics trackers). This forces supporting web browsers to ignore other external requests to mitigate cross-site scripting (XSS) Read More >

How to Find Your Server Python Version

Date: November 26, 2019          1 Minute to Read Below we cover how to find your Linux server or workstation Python version using the terminal. This helps you ensure you meet requirements for installing web applications such as Ansible automation software. Find Python Version Login to SSH. Run the python -V or python –version command. If you Read More >

How to Set WP Cerber Security Notifcations

Date: 08/07/2019 2 Minutes to Read In this article: WP Cerber Notifications Strong Email Authentication Your website truly is more secure with VPS Hosting. cPHulk brute force protection, ConfigServer & Firewall (CSF), and Scheduled cPanel backups safeguard your data and peace of mind in various ways. Yet those tools have one important thing in common Read More >

WP Cerber Global Settings to Restrict Website Access

Date: 08/15/2019 2 Minutes to Read In this article: WP Cerber Global Settings A WordPress plugin that restricts visitors to an “under construction” or login page can be helpful depending on the type of website. However, that plugin likely isn’t security-focused. And it serves no purpose until you need that maintenance page. That’s not the Read More >

WP Cerber Security Antispam and Bot Detection Settings

Date: 08/23/2019 | 2 Minutes to Read In this article: Antispam Settings reCAPTCHA As we stated when covering WP Cerber Security hardening options, the plugin can replace other WordPress security plugins. In that article, we discussed replacing the maintenance page as an example. This time we replace the WordPress Heartbeat API and reCAPTCHA plugins. WP Read More >

WP Cerber Security Tools

Date: 08/16/2019 2 Minutes to Read In this article: Export & Import Settings Diagnostic Info Logs Plugin Update Changelog License for Paid users These tools display info for troubleshooting and options for plugin setup. The WP Cerber Security WordPress plugin is a versatile security suite including an IP access list, automated email notifications, and other Read More >

WordPress HTTP Headers Plugin – HSTS

Date: 10/30/2019          1 Minute to Read The HTTP Headers plugin has the ability to add, and manage, HTTP Strict Transport Security (HSTS) in your .htaccess file to improve WordPress security. This forces web browsers that support HSTS to only load your website a using secure (HTTPS) connection. You must have a valid paid, or free, SSL Read More >