Isn’t it interesting that the hackers trying to breach my server, aren’t reading my posts?
I’m happy to report that all security measures integrated so far are being monitored and have proven effective. You should be able to post a comment now, even without signing-up or having to solve puzzles and jump through hoops. And I am almost 100% certain that my blog is NOT about to be bombed with spam, trash talk, pill pushing promos, and dead beats.. well, unless I’m the one posting it!
I currently have DDOS mitigation integrated with over 16 fail-safe fall-through IPs spanning multiple zones and about 1.5TB bandwidth.
I’m using ClamAV anti-virus and ConfigServer Security & Firewall.
I’m running Limit Attempts Reloaded, Google reCAPTCHA, and Splorp’s WordPress Comments Blacklist
And just to be on the safe side, for the time being, all posts passing these tests, are queued for moderation before going live.
I’m running reports and monitoring every step along the way and although that probably uses a decent chunk of server resources right now I don’t care, it’s not like the site is so busy that I can’t spare a few CPU cycles for security.
I’ll keep you posted but I think it’s time to move on with CONTENT and in particular, legal policies and disclaimers.
Legal Policies & Disclaimers
Cookies are like firecrackers they don’t want kids to play with while they bomb the hell out of countries with Atomic Bombs.
So I’ll give you the round-up on the legal crap I’ve prepared for dozens of websites over the years and my version for cyberwip.com next.
I’m sure you can hardly wait! – Kent