Over 60 million people choose WordPress to power their websites and blogs. Born out of a desire for an elegant personal publishing system built on PHP and MySQL, its potential has evolved to a full content management system.
In addition to the package installation, this 1-Click App also:
1- Enables the UFW firewall to allow only SSH (port
22, rate limited), HTTP (port
80), and HTTPS (port
2- Sets the MySQL root password, runs
mysql_secure_installation, and creates a
wordpress user with the necessary permissions. Note that the VM root user will not be prompted for the MySQL password. Keep in mind that if you’re connecting to a Database, the locally installed database will be disabled.
3- Sets up the
debian-sys-maint user in MySQL so the system’s init scripts for MySQL will work without requiring the MySQL
root user password.
4- Creates the initial WordPress configuration file to set up salt keys and allow the WordPress instance to connect to the database.
5- Disables XML-RPC to help prevent DDoS and other brute force attacks.
6- Modifies some of PHP’s settings to increase the maximum file size and execution time.
7- Enables the Apache rewrite module so the WordPress permalink feature will work.
8- Configures Apache with
UseCanonicalName On to mitigate CVE-2017-8295. You need a fully qualified domain name (FQDN) to use this One-Click, which you can purchase from any domain registrar. You do not have to manage your domain with DigitalOcean DNS.
After you create a WordPress One-Click VM, you’ll need to log into the VM via SSH to finish the WordPress setup. If you try to visit the VM’s IP address before logging into the VM.
To finish setup, connect to the VM as
root. Make sure to substitute the VM’s public IPv4 address.