WP AutoShield® is cPFence’s cutting-edge module for automating WordPress security on your server. Designed to protect all WordPress sites effortlessly, it leverages advanced features to address vulnerabilities, secure installations, and optimize performance—all with minimal user intervention.
Key Features
- Automatic Site Detection: WP AutoShield automatically identifies all WordPress installations on your server and updates the list daily.
- Exclusion List for Flexibility: Use the exclusion file
/var/log/cpfenceav/wp-exclude-list.txtto exclude specific sites from the daily cron job. - Daily Security Cron Jobs: Automate security measures based on your configuration file, such as disabling WP-Cron, applying secure permissions, or adding brute force protections.
- Manual Tools for Precision: Run manual commands to apply selected measures to specific sites listed in
wp-sites-list.txt.
How to Use the Exclusion Feature
WP AutoShield’s exclusion feature ensures specific WordPress sites are unaffected by automatic daily security tasks. Let’s break it down into three simple steps:
- Edit the configuration file (
/opt/cpfence/config.conf) to enable only the security features you’re comfortable applying server-wide. - Add sites you want to exclude to the file
/var/log/cpfenceav/wp-exclude-list.txt. These sites will not be affected by the automatic daily cron job. - For specific needs, use manual tools with a tailored list:
Steps for Manual Tools:
- Before running a manual command, edit the
/var/log/cpfenceav/wp-sites-list.txtfile to include only the sites you want affected. - Update the site list each time you use the manual tools. WP AutoShield will remind you if the list hasn’t been updated recently.
Important Points to Remember
- The exclusion list (
wp-exclude-list.txt) affects only the automatic daily cron jobs. - The daily cron job applies only the measures enabled in your configuration file.
- Manual commands bypass the exclusion list and provide flexibility to apply selected measures to specific sites in the
wp-sites-list.txtfile.
How to Enable WP AutoShield®
Activate WP AutoShield with a single command:
cpfence --wp-autoshield-onOnce activated, WP AutoShield begins automating security for all WordPress sites on your server.
Monitoring and Logs
Check logs for detailed activity tracking:
/var/log/cpfence_autoshield.logNeed Assistance?
For questions or support, please contact us via the client portal. We’re here to help!
