Learn about Centmin Mod LEMP Stack today
Become a Member

Wordpress security issues with wordpress+centminmod

Discussion in 'Blogs & CMS usage' started by Venucci, May 31, 2020.

  1. Venucci

    Venucci Member

    65
    8
    8
    Sep 25, 2018
    Ratings:
    +8
    Local Time:
    2:39 AM
    currentyl
    10
    1) (SOLVED nginx.conf.) i have runned the sucuri test for wordpress with centminmod and what i have found is some security issues . How could be possible to solve them . I mean as is nginx we do not have htaccess so i have no idea of what could be done . THis is what i was doing on htaccess previously . thanks @eva2000

    Header always append X-Frame-Options SAMEORIGIN
    Header set X-Content-Type-Options nosniff
    Header set Content-Security-Policy “script-src 'none';”

    2) (SOLVED
    nano /usr/local/nginx/conf/nginx.conf ) How can i open the nginx configuration ? where is locatted into the centminmod ?

    3) Is per vhost nginx config or a general nginx config

    4) i have found your guide but it seems that the images are broken ( i do not know what appears in them may be how to configure nginx with centminmod )
    WebPerf - Hardening Your HTTP Security Headers

    5) in which line i should put this headers ? Would you mind to give me some information respect it , please ? If you attach a screenshot to the correct place would be great .
     
    Last edited: May 31, 2020
  2. eva2000

    eva2000 Administrator Staff Member

    44,417
    10,144
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +15,692
    Local Time:
    10:39 AM
    Nginx 1.17.x
    MariaDB 5.5/10.x
    They're meant to go into your nginx vhost specific config files :)

    as per Centmin Mod Configuration Files - CentminMod.com LEMP Nginx web stack for CentOS