It's easy to forget to update packages after they've been installed as they silently live in the background working as intended. Here are two ways to check what needs updating:
pip list --outdated
Out of the box, pip provides a quick way to query which packages have updates.
pip-review
If …
Run the following from a terminal to tighten down the security on your MySQL installation:
# mysql_secure_installation
# apt-get install unattended-upgrades
# dpkg-reconfigure --priority=low unattended-upgrades
More at https://help.ubuntu.com/community/AutomaticSecurityUpdates
Add the following to your .htaccess file to block posts to wp-comment-posts.php and wp-login.php that have do not have an http referrer or user agent. This will also redirect the user back to their IP address.
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_METHOD} POST
RewriteCond %{REQUEST_URI} .(wp-comments-post|wp-login)\.php*
RewriteCond %{HTTP_REFERER} !.*domain.name.* [OR] …The following command is for an Apache setup with multiple vhosts:
tail -f /var/www/vhosts/*/statistics/logs/access_log | grep 'wp-login'
tail -f outputs the end of the log file and updates any new content to the screen as the file is being updated, thus allowing real-time monitoring.
I use this command when fail2ban …