Welcome to Centmin Mod Community
Become a Member

Wordpress security issues with wordpress+centminmod

Discussion in 'Blogs & CMS usage' started by Venucci, May 31, 2020.

  1. Venucci

    Venucci Member

    Sep 25, 2018
    Local Time:
    6:10 AM
    1) (SOLVED nginx.conf.) i have runned the sucuri test for wordpress with centminmod and what i have found is some security issues . How could be possible to solve them . I mean as is nginx we do not have htaccess so i have no idea of what could be done . THis is what i was doing on htaccess previously . thanks @eva2000

    Header always append X-Frame-Options SAMEORIGIN
    Header set X-Content-Type-Options nosniff
    Header set Content-Security-Policy “script-src 'none';”

    2) (SOLVED
    nano /usr/local/nginx/conf/nginx.conf ) How can i open the nginx configuration ? where is locatted into the centminmod ?

    3) Is per vhost nginx config or a general nginx config

    4) i have found your guide but it seems that the images are broken ( i do not know what appears in them may be how to configure nginx with centminmod )
    WebPerf - Hardening Your HTTP Security Headers

    5) in which line i should put this headers ? Would you mind to give me some information respect it , please ? If you attach a screenshot to the correct place would be great .

    Last edited: May 31, 2020
  2. eva2000

    eva2000 Administrator Staff Member

    May 24, 2014
    Brisbane, Australia
    Local Time:
    2:10 PM
    Nginx 1.19.x
    MariaDB 5.5/10.x
    They're meant to go into your nginx vhost specific config files :)

    as per Centmin Mod Configuration Files - CentminMod.com LEMP Nginx web stack for CentOS