Changes

I should harden hardened the wordpress installation: https://wordpress.org/support/article/hardening-wordpress/ This included:*Fixing file ownership: Change ownership of everything to root, except wflogs, uploads and themes in wp-content, which should be owned by www-data. *Check file permissions everything is 644, except wp-content which is 755*Checking dbase rights and setting new passwords. Checking user rights in the dbase and changing their password: mysql -user=root -p use wordpress SELECT User FROM mysql.user; SHOW GRANTS FOR 'username'@'localhost'; SET PASSWORD FOR 'username'@'localhost'='newpassword'; (Note that this shouldn't be logged in clear on the server, but might be on a client. Delete .mysql_history at the end of your session.)