Objective Set up a WordPress development mirror that is reachable only over VPN, mirrors the production site (kevwells.com), and is safe for testing theme, plugin, and content changes without public exposure or SEO duplication. Design Principles Single Apache, multiple vhosts: no second web server. Isolation via a dedicated VirtualHost. VPN-only access: bind the dev vhost … Read more
A precise, scriptable workflow to mirror a live WordPress instance to a local network node for testing and development without leaking secrets or damaging production. Contents Quick start Why this design Architecture at a glance Prerequisites Setup and configuration Replication workflow Sanitised automation script Operational playbook Security notes and threat model Troubleshooting Extensions and variants … Read more
Goal: a single, sane vhost. TLS 1.2/1.3, basic security headers, OCSP stapling, HSTS (opt-in), tight logs, and no server leaks. 1) Modules & hardening sudo a2enmod ssl headers rewrite socache_shmcb # Hide version echo “ServerTokens Prod\nServerSignature Off” | sudo tee /etc/apache2/conf-available/hideversion.conf sudo a2enconf hideversion 2) Vhost <VirtualHost *:443> ServerName example.com DocumentRoot /var/www/html SSLEngine on SSLProtocol … Read more
This is a copy of The Ultimate .htaccess Apache File Guide by Charles Torvalds from www.askapache.com This document is reproduced here by kind permission of Charles Torvalds from www.askapache.com Full copyright details relating to this document can be found at the foot of this page. The Ultimate .htaccess Apache File Guide htaccess is a very … Read more
