Etiqueta: security

WannaCry and stay safe from it

The digital world has been hit by the WannaCry ransomware. A kind of virus that basically kidnaps your data unless you pay a kind of ransom.

While paying USD$300 for recovering your files sounds reasonable… do not do it.

It’s very likely that the authors of the virus will just take your money and give you nothing back. That is the way that it usually works.

Leer más

Keep out the bots

If you did not know it, half of the internet is overrun by bots.

Most of them are very useful like the GoogleBot, crawlers, and spiders. But others are not so good and usually end up showing when you do not want to.

I “recently” have been doing all sort of tests, attunements, and changes. This with the objective to make the website much more resilient to attacks and solve problems that were left unchecked from the past iteration as mentioned before.

Leer más

SSL

I was completely unaware of a feature that has been around for quite a while… one that is key for everyone and that is present in cPanel… it is the ability to have Secure Websites easily.

Back at the day when I was much more active web-wisely, having SSL or HTTPs was… painful at best, if not really expensive.

Today, while I was lurking and figuring out how to implement a nice online poll for something that is going on… I stumbled upon that.

Making a really long history short, I basically was messing up with a service called ” Let’s Encrypt™” that comes embedded with cPanel. It was interesting that I could now offer secure content quite easily and without having to spend a bunch of extra bucks… what is good.

Of course, this only means that the communications between this server and you are secure… but is a nice step forward. Eventually, maybe I’ll have my hands over a private key or something, but that is a tale for another day.

Sadly for me, not all was that easy to set up in what seemed easy: Just change http to https.

Given the setup I have set here (Internet -> Cloudflare -> Private Server), WordPress started to fall into an “infinite redirection loop”, and I pretty much clueless about it.

If I visited the website, without changing WP to use https instead of http, I saw half the stuff… but if I told WP to use https… it did fall into an infinite loop.

Of course, I was looking into websites like this one for answers… somewhere “promising”, but at the end, only one thing or another worked out.

I was almost to give up when I finally found some light at the official WP codex, and I was surprised how much little I needed to add to fix such thing.

For the looks of it… apparently, my WP install got confused when I changed the settings and saw CloudFlare and kept trying to fix the issue, just making it worst…

But now things are much better, and kind of force SSL one way or another. What I have implemented in the other project I was messing with… and as long I do not have some kind of weird “warning”, I will be a happy skonk (yeah, guess that one why).

El Contenido es 2010-2017© kadai.com.mx

Blogging desde Quintana Roo, México.