Upgrade to latest CURL and Open SSL in WHM

Problem:
eCommerce providers like Paypal introduced more strict SSL requirements. Ex:
“requires OpenSSL >= 1.0.1 to be installed on your server”

PHP info shows:
CURL
SSL Version OpenSSL/1.0.0

Fix:

  • Install latest CURL:

cd /usr/local/src
wget https://curl.haxx.se/download/curl-7.52.1.tar.gz
tar -xvzf curl-7.52.1.tar.gz
cd curl*

./configure –enable-threaded-resolver –enable-http –enable-ftp –enable-proxy –enable-tftp –enable-ntlm –enable-static –with-ssl=/usr/local/ssl –enable-ipv6 –enable-shared –with-libidn
make && make install

/usr/local/bin/curl –version

  • Configure PHP to use it -Create a new file /var/cpanel/easy/apache/rawopts/all_php5 with this contents:
    –with-curl=/usr/local/src/curl-7.52.1
  • Rebuild Apache & PHP with EasyApache 3.

Result:

PHP info should now show:
cURL Information 7.52.1
SSL Version OpenSSL/1.0.1e

Top Plugins to Optimize and Secure WordPress

Speed Up and Secure

  1. WordFence
    Enable firewall, periodic scans, failed login block, secure passwords.
  2. WP Super Cache
    Speed up delivery of static content and pages: configure it for visitors to prevent overload by bots/crawlers.
  3. Use Google Libraries
    Load JS from CDN. Reduce load.
  4. WPS Hide Login
    Protect from brute login.
  5. Robots.txt File
    Edit the robots.txt file.
  6. Really Simple SSL
    Redirects pages to HTTPS (SSL required).
  7. Easy WP SMTP
    Use an account to send emails with necessary verifications to reduce spam filtering and lost emails.

Troubleshooting Tools

  1. P3 Plugin Performance Profiler
  2. Server IP & Memory Usage Display

Configuration

  • robots.txt

    User-agent: *
    Crawl-delay: 90
    Disallow: /wp-admin/
    Disallow: /wp-includes/
    Disallow: /streams/
    Disallow: /wp-login.php
    Disallow: /wp*

    User-agent: MJ12bot
    Disallow: /