After changing your SSH port number and disabling root logins, the next step in server security is to use SSH keys for logging into your server instead of passwords. SSH keys are special files that come in pairs – one resides on your server, and the other resides on your computer. When properly setup, SSH […]
How To Disable Root SSH Login In WHM
If you haven’t already done so by now, read my earlier tutorial on how to change your SSH port on a NameHero VPS. But that’s just the first step in hardening your server! There’s a lot more to be done. And probably the most important step is to disable root SSH logins. In this tutorial, […]
How to Open Ports on a VPS from NameHero
Opening and closing ports is an essential aspect of network security. A webserver can “listen” on any number of ports, but that doesn’t mean it should! In fact, it shouldn’t listen to most of them. Certain services like SSH are standardized to listen on specific ports – in this case, 22. As a result, port […]
How to Change The SSH Port On A NameHero VPS
One of the first tasks when setting up a new server is to change the SSH port to something else. By default, the SSH server listens for incoming connections on port 22. So the first time you connect to it, that’s the setting you need. The best program to connect via SSH is PuTTY. It’s […]
My Desperate Scramble To < 200ms TTFB
How I Dropped My Cumulative Layout Shift (CLS) To Zero
Update: You can now measure CLS in Google Chrome using the “Performance” tab. However, it’s not always accurate. The method below is still useful to get a visual of tricky elements. Last week, Google made waves by introducing a new bunch of KPIs with regards to page speed, calling them “Core Web Vitals”. In addition […]
How To Test Your .htaccess File For Errors
Yesterday as I sat down to work, I took the time to update some plugins on my site. Based on my golden rule, I always wait until an updated plugin has been out for at least 4 days before applying the patch. This allows time for the developer to become aware of any new bugs, […]
Are 3rd Party Website Backup Services Secure?
In part 2 of my series on offsite backups, I discussed how “pull” backups work with services like DropMySite, CodeGuard, and Jetpack Backup. The idea is that they connect to your website from outside and download the changed files one by one, along with the database. I argued that they were more efficient than other […]
When Is It OK To Modify WordPress Plugins And Themes?
When you start delving a little more deeply into WordPress and want to customize things beyond what is offered by default via the GUI customization options, you enter the world of modifying code to suit your needs. At this point, it’s important to do things correctly. Every WordPress site tells you to be careful and […]
How Is WooCommerce Hosting Different?
Web hosting providers like to call their packages by many different names. “WordPress Hosting”, “Magenta Hosting”, “Odoo Hosting”, and more. Basically, whatever software or architecture is “hot” on the market, gets its own branded landing page. This gives the illusion that these packages are somehow different from ordinary web hosting in a meaningful way. But […]