Description

In addition to the package installation, this 1-Click App also:

1- Enables the UFW firewall to allow only SSH (port 22, rate limited), HTTP (port 80), and HTTPS (port 443) access.

2- Sets the MySQL root password, runs mysql_secure_installation, and creates a wordpress user with the necessary permissions. Note that the VM root user will not be prompted for the MySQL password. Keep in mind that if you’re connecting to a Database, the locally installed database will be disabled.

3- Sets up the debian-sys-maint user in MySQL so the system’s init scripts for MySQL will work without requiring the MySQL root user password.

4- Creates the initial WordPress configuration file to set up salt keys and allow the WordPress instance to connect to the database.

5- Disables XML-RPC to help prevent DDoS and other brute force attacks.

6- Modifies some of PHP’s settings to increase the maximum file size and execution time.

7- Enables the Apache rewrite module so the WordPress permalink feature will work.

8- Configures Apache with UseCanonicalName On to mitigate CVE-2017-8295. You need a fully qualified domain name (FQDN) to use this One-Click, which you can purchase from any domain registrar. You do not have to manage your domain with DigitalOcean DNS.

After you create a WordPress One-Click VM, you’ll need to log into the VM via SSH to finish the WordPress setup. If you try to visit the VM’s IP address before logging into the VM.

To finish setup, connect to the VM as root. Make sure to substitute the VM’s public IPv4 address.