Hello,
I wanted to self host my WordPress blog and for that I’ve chosen a hosting provider which I no longer recommend..
Because I’m lazy and I don’t know how to configure web servers that well I’ve used XXX’s WordPress one click install, the package installed WordPress and did the following things:
Enables the UFW firewall to allow only SSH (port 22, rate limited), HTTP (port 80), and HTTPS (port 443) access. Sets the MySQL root password, runs mysql_secure_installation, and creates a wordpress user with the necessary permissions. Sets up the debian-sys-maint user in MySQL so the system’s init scripts for MySQL will work without requiring the MySQL root user password. Creates the initial WordPress configuration file to set up salt keys and allow the WordPress instance to connect to the database. Disables XML-RPC to help prevent DDoS and other brute force attacks. (Should you require xmlrpc, run “a2disconf block-xmlrpc” from the terminal to disable blocking Modifies some of PHP’s settings to increase the maximum filesize and execution time. Enables the Apache rewrite module so the WordPress permalink feature will work. Configures Apache with UseCanonicalName On to mitigate CVE-2017-8295. This is pretty convenient as you can setup a fully functional blog in less than 10 minutes, the only thing that is missing is a email configuration.
...