WAF Compatibility Guarantee #
The CyberWAF Platform is built for universal compatibility. Our WAF works at the infrastructure level, meaning it secures your application regardless of whether you are running WordPress, a custom PHP application, or a static site.
Essential WordPress Security Steps #
While the WAF protects the front door, internal application hardening is still crucial:
-
Plugin Management: Only install necessary plugins. Delete unused plugins and themes immediately.
-
Regular Updates: Ensure the WordPress Core, themes, and plugins are always updated to the latest version to prevent exploitation of known vulnerabilities.
-
Hiding Login Page (Optional): Use a security plugin to rename the default
/wp-adminlogin URL to reduce brute force login attempts.
Troubleshooting CMS Login Errors #
If you encounter issues logging into your CMS immediately after a WAF installation:
-
Check False Positives: Refer to Article 7 and temporarily whitelist your static IP to ensure the WAF is not blocking your login attempts.
-
File Permissions: Ensure your WordPress files and folders have the correct permissions (755 for folders, 644 for files).
