We got it. Had to open the Nginx logs and noticed too many "posts" in the error log. Dug in and it was three ranges overseas all hitting with a "post timeout attack." It was a light DDoS where sessions were being opened and held causing nginx to wait on a timeout. This caused Apache to just increment forever. Once we blocked those ranges, the Apache thread count started to drop for the first time, and memory started to release. And the continuous flood of nginx error logs ceased. If you are looking at nginx error logs, this is what you look for: upstream timed out (110: Connection timed out) while reading response header from upstream, client: You can use this command to collect the offending IP addresses: grep "upstream timed out" error.log | cut -d' ' -f20 Then use your firewall to shut them down. We are all good now! Woot.

Well let's talk about fedora and updating killing a laptop lol....

@black3dynamite said in If Not WordPress, What's the Alternative: @scottalanmiller said in If Not WordPress, What's the Alternative: @360col said in If Not WordPress, What's the Alternative: Well if the site is not complex then something like Grav these days is much better IMHO I've been eyeing Grav for a while. It does look very interesting. ANy guesses as to pros and cons vs. WordPress? Beyond the obvious flat file vs database differences... Ever since discovering Wiki.js, I like the idea of using git for versioning backups and deployments. https://github.com/trilbymedia/grav-plugin-git-sync You can automate backups of the MariaDB, though. Not all that much different. Lighter, on big loads. GIT is actually a very heavy process. Great for tiny things, but bad for big ones.

@IRJ This would be a heck of a guide if you ever get the time to do it

@JaredBusch said in WordPress admin page redirecting to IP: Is the site URL correct in the settings Been there many times

@scottalanmiller Try with another separator instead of dash, just to make check if it's the dash or something else. Maybe just remove it altogether.

@Reid-Cooper said in Standard Plugins for WordPress Sites: Thanks guys. Seems like not too many people have plugins focused on performance. I'm surprised, seems like those things would be pretty common. When I go to my WP site, performance seems fine.

@JaredBusch said in Unable add plugins and themes to Wordpress: @EddieJennings said in Unable add plugins and themes to Wordpress: @JaredBusch said in Unable add plugins and themes to Wordpress: httpd_can_network_connect And setsebool -P httpd_can_network_connect on appears to be the answer . And has nothing to do with contexts True. That was a point of confusion.

YOu can also do a free test from Qualys https://www.qualys.com/free-services/ https://www.qualys.com/community-edition/

Our first sites are on it and others are updating today. So far, so good.

@scottalanmiller said in Traffic statistics for self-hosted WordPress: Check out Matomo I've also never been a huge GA fan. Will check this out.

I use wordpress with Wocommerce, integrates with paypal and stripe.

2012...ouch, scrap this one then....

@black3dynamite said in Wordpress Install - Page is trying to load unsafe script: @NashBrydges Change CustomLog /var/log/access.log combined to CustomLog /var/log/httpd/access.log combined Good catch. Thanks.

@bnrstnr said in WordPress behind NGINX Reverse Proxy issues: @scottalanmiller said in WordPress behind NGINX Reverse Proxy issues: https://mangolassi.it/topic/13062/install-a-basic-wordpress-site-with-wp-cli Doh, somehow I missed this. And this one.... https://mangolassi.it/topic/16084/installing-fedora-27-lamp-stack-plus-wordpress/

@brandon220 said in Using Vultr Apps for WordPress Hosting: I just loaded one to do some testing. Don't plan on using it for production. I may use Bluehost or Vultr on Fedora. My main reason was to get familiar with a theme and see if I like it. Then, I can destroy the instance and make it permanent and with the correct underlying OS. Works fine for that.

@bnrstnr said in Installing Fedora 27 LAMP Stack plus WordPress and SSL: @tim_g said in Installing Fedora 27 LAMP Stack plus WordPress and SSL: Create a new secure SSH key: ssh-keygen -t rsa -b 4096 -C "root-webserv1-key" Hit enter for default location and name. Hit enter again to skip passphrase creation. Now you should SSH to server to continue. Does this step disable normal logins or change anything at all? After my first restart my root password isn't working. This only generates a new certificate and does not do anything else. If your root password is not working, maybe you are typing it in incorrectly, or it's something else entirely, as what @NashBrydges is referring to. If you are using Putty, perhaps it's caching the old public key.

@wls-itguy said in Debian upgrade from 7 to 9 - no sub pages display now.: I'll see if I can explain this so there isn't any missing pieces. I upgraded our wordpress/debian 7 install to debian 8 and then to debian 9. At some point in there, not sure as I cannot recall if I tested the site working or not before moving on to debian 9 upgrade, the site is working but doesn't display anything below the main www. Example -> www.wls.wels.net works just fine but www.wls.wels.net/grow-in-grace gives me the big 404 error. I thought it had to do with permalinks inside Wordpress but that didn't fix it. Thought it could be a sites-enabled issue, that also was not the case. I am not sure where to go from here. From what I remember of websites, if you can get to the main site you should be able to get to the whole thing but I'm guessing not. What am I missing? Sounds like something in Apache to me. I know that isn't too helpful but it could be several things

Great

@scottalanmiller said in Installing WordPress on Fedora 25 and 26 Minimal install: For ease and speed and better management, I highly recommend using WP-CLI for all of your downloading, updating, configuration, etc. One like of WP-CLI will eliminate most of this installation, while making it easier to maintain in the long run. https://mangolassi.it/topic/13062/install-a-basic-wordpress-site-with-wp-cli Yup, that's what I use now, I won't every go back! https://mangolassi.it/topic/16084/installing-fedora-27-lamp-stack-plus-wordpress

@bigbear said in WordPress Hosting: Are you still doing hostadillo @scottalanmiller ? Yup, sure are!

Use Drupal. It's almost purpose built for this type of stuff. Custom content types and views make anything possible.

@wls-itguy said in MySQL/Wordpress issue: @scottalanmiller Yours? Yes, I PMd you a few minutes ago

@networknerd said in When Someone Points Their DNS at Your Site: @scottalanmiller said in When Someone Points Their DNS at Your Site: Could still be weird. But could be benign, too. Or it could be the NSA. All your websites are belong to NSA.

I have not found anything I liked. I am not leanging to jsut making this a section of my NodeBB. Maybe a dedicated page with the custom page plugin.

Wordpress Pros: Easy to setup Lot's of online support and pre-built customization Can be singular focused or multi focused site Cons: Target of hackers Updates of individual plugins or add ins may be required Ghost Pros: 1 Click install Fast and Focused blog Simple Cons: Less troubleshooting is available since it is less common Much less 3rd party customization.

Thank you, I'll investigate from here.