Shop & Support

LRob.fr

Performance and security: LRob's strategy for optimal WordPress hosting

Written by

LRob

in

High-performance, secure WordPress hosting without compromise

At LRob, our mission is clear: to offer a fast, secure WordPress hosting, by minimising the impact of attacks while optimising server performance. Unlike standard solutions that simply respond to threats, we go further by actively preventing unnecessary server loads.

While some web hosts fail to implement sufficient or any attack blocking measures, or offer no transparency whatsoever, LRob can proudly display the measures it has put in place and the results it has achieved.

In this article, we explain our strategy, which is based on three layers of security designed to effectively block attackers and offer you maximum security and performance for your website.

Attacks on WordPress: a scourge that consumes your resources

WordPress websites are the target of numerous automated attacks. These attacks take two main forms:

  • Real attacks, which consume a huge amount of resources. For example, massive connection attempts or requests targeting XML-RPC (xmlrpc.php) make heavy demands on the CPU because they reach PHP directly and cannot be cached. Similarly, certain POST requests can be interpreted by PHP and cause excessive load.
  • Parasitic requests, which generate useless responses such as 301, 403 (application firewall or server rules) or 404 errors. Although they are not always malicious, they do add to logs and reduce server efficiency.

Without adequate protection, this can saturate servers and slow down your sites. This is one of the causes of the slowness seen with many web hosts.

That's why LRob actively fights this type of attack. And our approach makes the difference: we don't just mitigate the impact of malicious requests, we eliminate them before they become a problem.

Our three-tier protection strategy

1. Security rules specific to WordPress

We implement strict security rules adapted to the specificities of WordPress, such as those provided by the Plesk WordPress Toolkit, and also customised configurations to reduce the attack surface.

For example, we prohibit certain requests to certain key WordPress directories, block requests to XML-RPC when unused, and log failed connection attempts to WordPress.

This enables unauthorised access and abnormal behaviour specific to the CMS to be identified or blocked directly.

2. ModSecurity: a powerful application firewall

ModSecurity acts as an intelligent filter, blocking malicious requests before they reach WordPress. This solution stops the most common attacks such as SQL injections, XSS or vulnerability scans, adding significant protection to your site, even when it contains known security flaws.

However, blocking a request is not enough to prevent unnecessary use of server resources. That's where fail2ban comes in.

3. Fail2ban: blocking attackers for good

Fail2ban analyses the attack logs from the previous two security measures and automatically blocks malicious IPs, preventing them from making any further requests.

In plain English:

  • Fail2ban lists the attackers via their IP
  • If an attacker repeats the attack, fail2ban bans the attacking IP.
  • Result: this IP will no longer be able to send requests to your site.

This means you'll gain drastically on two fronts: performance and security. Your site loads faster and is much less vulnerable to attacks.

The result: a faster, safer site, freeing up resources

With this strategy, we are seeing drastically reduced CPU usage on our servers, while improving the availability and responsiveness of our customers' sites.

Key figures:

  • Up to 95% of CPU usage saved by directly blocking the attackers.
  • A server that was once saturated can fall to 5% of use after protection has been fitted.
  • 95% reduction in spurious logs and improved readability of traffic analyses.

I'd like to be able to give you figures on the increase in security. But that would require a single site hosted by LRob to have been hacked. That has never happened. It would be too pretentious to claim that this reduces the risk of a site being hacked by 100%. However, we can be confident that it makes life difficult for attackers and makes it extremely difficult to hack into your site.

Did you know? To make life even harder for attackers, LRob has reported 250,000 attacks on AbuseIPDB since October 2024.

Why choose LRob for your WordPress hosting?

We're not content just to offer a high-performance hosting, We are constantly optimising our infrastructure to offer a seamless, secure experience to our customers.

With specific security rules, ModSecurity and fail2ban, we provide :

  • Proactive protection against attacks
  • Optimum performance for your visitors
  • A server relieved of unnecessary requests

Don't let bots slow down your site.

Choose a web hosting designed for safety and performance with LRob! 🚀

See our web hosting

Comments

Leave a Reply

More posts