<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Server Security on [ MECANIK DEV ]</title><link>https://mecanik.dev/en/tags/server-security/</link><description>Recent content in Server Security on [ MECANIK DEV ]</description><generator>Hugo -- gohugo.io</generator><language>en</language><copyright>Copyright © 2020-{year} by [ MECANIK DEV ]. All Rights Reserved.</copyright><lastBuildDate>Tue, 07 Jul 2026 07:00:00 +0100</lastBuildDate><atom:link href="https://mecanik.dev/en/tags/server-security/index.xml" rel="self" type="application/rss+xml"/><item><title>Linux Server Hardening Guide for 2026</title><link>https://mecanik.dev/en/posts/linux-server-hardening-guide-2026/</link><pubDate>Tue, 07 Jul 2026 07:00:00 +0100</pubDate><guid>https://mecanik.dev/en/posts/linux-server-hardening-guide-2026/</guid><description>A default Linux install is convenient, not secure. Hardening is the process of reducing a server&amp;rsquo;s attack surface and tightening its configuration so that the inevitable probing from the internet finds nothing easy to exploit. This guide covers the hardening steps that matter most in 2026, in a sensible order of priority.
TL;DR
SSH is your biggest exposed surface: use key-based authentication, disable root login and passwords, and rate-limit connections Run a default-deny firewall and shut down every service and port you do not need Keep the system patched automatically, and apply kernel and account hardening Use SELinux or AppArmor, enable audit logging, and measure yourself against the CIS Benchmark for your distribution 1.</description></item><item><title>WordPress Security Hardening Checklist for 2026</title><link>https://mecanik.dev/en/posts/wordpress-security-hardening-checklist-2026/</link><pubDate>Mon, 06 Jul 2026 19:00:00 +0100</pubDate><guid>https://mecanik.dev/en/posts/wordpress-security-hardening-checklist-2026/</guid><description>WordPress powers a huge share of the web, which makes it a constant target. The good news is that the overwhelming majority of WordPress compromises exploit a small, predictable set of weaknesses, and almost all of them are preventable. This WordPress security hardening checklist walks through the steps that actually move the needle in 2026, roughly in priority order.
TL;DR
Vulnerable and outdated plugins and themes are the single biggest WordPress attack vector; disciplined updates and removing unused code matter more than anything else Strong authentication (unique admin usernames, strong passwords, two-factor, login rate limiting) closes the second most common door Harden wp-config.</description></item></channel></rss>