{"id":2327,"date":"2026-01-02T23:42:13","date_gmt":"2026-01-03T02:42:13","guid":{"rendered":"https:\/\/helpsysadmin.com.br\/blog\/?p=2327"},"modified":"2026-06-15T06:09:43","modified_gmt":"2026-06-15T09:09:43","slug":"seguranca-wordpress-servidor","status":"publish","type":"post","link":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/","title":{"rendered":"Seguran\u00e7a no WordPress em n\u00edvel de servidor e usu\u00e1rio"},"content":{"rendered":"<div id=\"helps-3559468439\" class=\"helps-before-content-2 helps-entity-placement\"><script async src=\"https:\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-3661896953164277\"\r\n     crossorigin=\"anonymous\"><\/script>\r\n<!-- 2anuncios display quadrado -->\r\n<ins class=\"adsbygoogle\"\r\n     style=\"display:block\"\r\n     data-ad-client=\"ca-pub-3661896953164277\"\r\n     data-ad-slot=\"5051229894\"\r\n     data-ad-format=\"auto\"\r\n     data-full-width-responsive=\"true\"><\/ins>\r\n<script>\r\n     (adsbygoogle = window.adsbygoogle || []).push({});\r\n<\/script><\/div>\n<p class=\"wp-block-paragraph\">Muitos administradores confiam apenas em plugins de seguran\u00e7a (como Wordfence ou iThemes), mas a verdade dura \u00e9: <strong>plugins rodam em n\u00edvel de aplica\u00e7\u00e3o (PHP)<\/strong>. Se o ataque derrubar o PHP ou explorar uma falha no Nginx\/Apache, o plugin nem sequer &#8220;acorda&#8221; para defender o site.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">A verdadeira seguran\u00e7a no WordPress acontece antes mesmo da requisi\u00e7\u00e3o chegar ao PHP. Aqui est\u00e1 o guia de hardening &#8220;n\u00edvel sysadmin&#8221;, focado em impedir que o servidor seja comprometido, mesmo que o WordPress tenha uma vulnerabilidade.<\/p>\n\n\n\n<h3 id=\"h-1-bloqueio-de-execucao-de-php-a-regra-de-ouro\" class=\"wp-block-heading\">1. Bloqueio de Execu\u00e7\u00e3o de PHP (A Regra de Ouro)<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">A forma mais comum de hackear WP \u00e9 fazer upload de um arquivo malicioso (backdoor\/shell) disfar\u00e7ado para a pasta <code>wp-content\/uploads<\/code> e execut\u00e1-lo. Se voc\u00ea impedir que arquivos PHP sejam executados nessas pastas, voc\u00ea mata 90% dos vetores de ataque automatizados.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>No Nginx:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">location ~* ^\/wp-content\/uploads\/.*\\.php$ {\n    deny all;\n}<\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>No Apache (.htaccess):<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Voc\u00ea deve criar um arquivo chamado <code>.htaccess<\/code> <strong>especificamente dentro da pasta de uploads<\/strong>(wp-content\/uploads) do seu WordPress, e n\u00e3o na pasta raiz do site. Insira:<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">&lt;FilesMatch &#8220;\\.php&#8221;><br>          Require all denied<br>&lt;\/FilesMatch><\/p>\n\n\n\n<h3 id=\"h-2-imutabilidade-de-arquivos-criticos-chattr\" class=\"wp-block-heading\">2. Imutabilidade de Arquivos Cr\u00edticos (<code>chattr<\/code>)<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Permiss\u00f5es <a href=\"https:\/\/helpsysadmin.com.br\/blog\/como-instalar-crowdsec\/\" data-internallinksmanager029f6b8e52c=\"1\" title=\"Como instalar Crowdsec\" target=\"_blank\" rel=\"noopener\">Linux<\/a> padr\u00e3o (<code>chmod<\/code>) n\u00e3o s\u00e3o suficientes se o atacante ganhar acesso com o usu\u00e1rio do sistema. A &#8220;bala de prata&#8221; do sysadmin \u00e9 o atributo de imutabilidade.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Use o comando <code>chattr +i<\/code> em arquivos que nunca devem mudar automaticamente. Isso impede que at\u00e9 mesmo o usu\u00e1rio <code>root<\/code> altere ou delete o arquivo sem antes remover o atributo.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Onde aplicar:<\/strong> <code>wp-config.php<\/code> e, em casos extremos, o <code>index.php<\/code> da raiz.<\/p>\n\n\n\n<div class=\"wp-block-codemirror-blocks-code-block code-block\"><pre>chattr +i \/home\/usuario\/public_html\/wp-config.php<\/pre><\/div>\n\n\n\n<p class=\"wp-block-paragraph\"><em><strong>Nota:<\/strong> Se voc\u00ea precisar editar esse arquivo, ter\u00e1 que rodar <code>chattr -i<\/code> primeiro.<\/em><\/p>\n\n\n\n<h3 id=\"h-3-hardening-do-php-php-ini-pool-d\" class=\"wp-block-heading\">3. Hardening do PHP (php.ini \/ pool.d)<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">O WordPress n\u00e3o precisa de acesso a todas as fun\u00e7\u00f5es do sistema operacional. Restrinja o que o interpretador PHP pode fazer.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Desabilitar Fun\u00e7\u00f5es Perigosas:<\/strong> No seu <code>php.ini<\/code> ou na configura\u00e7\u00e3o do FPM, desabilite fun\u00e7\u00f5es que scripts de shell usam para comandar o servidor.<\/p>\n\n\n\n<div class=\"wp-block-kevinbatdorf-code-block-pro\" data-code-block-pro-font-family=\"Code-Pro-JetBrains-Mono\" style=\"font-size:.875rem;font-family:Code-Pro-JetBrains-Mono,ui-monospace,SFMono-Regular,Menlo,Monaco,Consolas,monospace;line-height:1.25rem;--cbp-tab-width:2;tab-size:var(--cbp-tab-width, 2)\"><span style=\"display:block;padding:16px 0 0 16px;margin-bottom:-1px;width:100%;text-align:left;background-color:#2e3440ff\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"54\" height=\"14\" viewBox=\"0 0 54 14\"><g fill=\"none\" fill-rule=\"evenodd\" transform=\"translate(1 1)\"><circle cx=\"6\" cy=\"6\" r=\"6\" fill=\"#FF5F56\" stroke=\"#E0443E\" stroke-width=\".5\"><\/circle><circle cx=\"26\" cy=\"6\" r=\"6\" fill=\"#FFBD2E\" stroke=\"#DEA123\" stroke-width=\".5\"><\/circle><circle cx=\"46\" cy=\"6\" r=\"6\" fill=\"#27C93F\" stroke=\"#1AAB29\" stroke-width=\".5\"><\/circle><\/g><\/svg><\/span><span role=\"button\" tabindex=\"0\" style=\"color:#d8dee9ff;display:none\" aria-label=\"Copy\" class=\"code-block-pro-copy-button\"><pre class=\"code-block-pro-copy-button-pre\" aria-hidden=\"true\"><textarea class=\"code-block-pro-copy-button-textarea\" tabindex=\"-1\" aria-hidden=\"true\" readonly>disable_functions = exec,passthru,shell_exec,system,proc_open,popen,curl_multi_exec,parse_ini_file,show_source<\/textarea><\/pre><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" style=\"width:24px;height:24px\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path class=\"with-check\" stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2m-6 9l2 2 4-4\"><\/path><path class=\"without-check\" stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2\"><\/path><\/svg><\/span><pre class=\"shiki nord\" style=\"background-color: #2e3440ff\" tabindex=\"0\"><code><span class=\"line\"><span style=\"color: #D8DEE9\">disable_functions<\/span><span style=\"color: #D8DEE9FF\"> <\/span><span style=\"color: #81A1C1\">=<\/span><span style=\"color: #D8DEE9FF\"> <\/span><span style=\"color: #D8DEE9\">exec<\/span><span style=\"color: #ECEFF4\">,<\/span><span style=\"color: #D8DEE9\">passthru<\/span><span style=\"color: #ECEFF4\">,<\/span><span style=\"color: #D8DEE9\">shell_exec<\/span><span style=\"color: #ECEFF4\">,<\/span><span style=\"color: #D8DEE9\">system<\/span><span style=\"color: #ECEFF4\">,<\/span><span style=\"color: #D8DEE9\">proc_open<\/span><span style=\"color: #ECEFF4\">,<\/span><span style=\"color: #D8DEE9\">popen<\/span><span style=\"color: #ECEFF4\">,<\/span><span style=\"color: #D8DEE9\">curl_multi_exec<\/span><span style=\"color: #ECEFF4\">,<\/span><span style=\"color: #D8DEE9\">parse_ini_file<\/span><span style=\"color: #ECEFF4\">,<\/span><span style=\"color: #D8DEE9\">show_source<\/span><\/span><\/code><\/pre><\/div>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Open_basedir:<\/strong> Garanta que o PHP esteja &#8220;preso&#8221; no diret\u00f3rio do usu\u00e1rio, impedindo que um site invadido leia o <code>\/etc\/passwd<\/code> ou arquivos de outros sites no mesmo servidor.<\/p>\n\n\n\n<h3 id=\"h-4-matando-o-xml-rpc\" class=\"wp-block-heading\">4. Matando o XML-RPC<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">O arquivo <code>xmlrpc.php<\/code> \u00e9 um legado usado para pingbacks e o app mobile do WP, mas hoje serve quase exclusivamente para ataques de Brute Force e amplifica\u00e7\u00e3o de DDoS.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>A\u00e7\u00e3o:<\/strong> Bloqueie o acesso a ele diretamente no Web Server (Nginx\/Apache), para n\u00e3o gastar recursos do PHP processando o bloqueio.<br><strong>Nginx<\/strong>:<\/p>\n\n\n\n<div class=\"wp-block-kevinbatdorf-code-block-pro\" data-code-block-pro-font-family=\"Code-Pro-JetBrains-Mono\" style=\"font-size:.875rem;font-family:Code-Pro-JetBrains-Mono,ui-monospace,SFMono-Regular,Menlo,Monaco,Consolas,monospace;line-height:1.25rem;--cbp-tab-width:2;tab-size:var(--cbp-tab-width, 2)\"><span style=\"display:block;padding:16px 0 0 16px;margin-bottom:-1px;width:100%;text-align:left;background-color:#2e3440ff\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"54\" height=\"14\" viewBox=\"0 0 54 14\"><g fill=\"none\" fill-rule=\"evenodd\" transform=\"translate(1 1)\"><circle cx=\"6\" cy=\"6\" r=\"6\" fill=\"#FF5F56\" stroke=\"#E0443E\" stroke-width=\".5\"><\/circle><circle cx=\"26\" cy=\"6\" r=\"6\" fill=\"#FFBD2E\" stroke=\"#DEA123\" stroke-width=\".5\"><\/circle><circle cx=\"46\" cy=\"6\" r=\"6\" fill=\"#27C93F\" stroke=\"#1AAB29\" stroke-width=\".5\"><\/circle><\/g><\/svg><\/span><span role=\"button\" tabindex=\"0\" style=\"color:#d8dee9ff;display:none\" aria-label=\"Copy\" class=\"code-block-pro-copy-button\"><pre class=\"code-block-pro-copy-button-pre\" aria-hidden=\"true\"><textarea class=\"code-block-pro-copy-button-textarea\" tabindex=\"-1\" aria-hidden=\"true\" readonly>location = \/xmlrpc.php {\n    deny all;\n    access_log off;\n    log_not_found off;\n}<\/textarea><\/pre><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" style=\"width:24px;height:24px\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path class=\"with-check\" stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2m-6 9l2 2 4-4\"><\/path><path class=\"without-check\" stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2\"><\/path><\/svg><\/span><pre class=\"shiki nord\" style=\"background-color: #2e3440ff\" tabindex=\"0\"><code><span class=\"line\"><span style=\"color: #D8DEE9\">location<\/span><span style=\"color: #D8DEE9FF\"> <\/span><span style=\"color: #81A1C1\">=<\/span><span style=\"color: #D8DEE9FF\"> <\/span><span style=\"color: #81A1C1\">\/<\/span><span style=\"color: #D8DEE9\">xmlrpc<\/span><span style=\"color: #ECEFF4\">.<\/span><span style=\"color: #D8DEE9\">php<\/span><span style=\"color: #D8DEE9FF\"> <\/span><span style=\"color: #ECEFF4\">{<\/span><\/span>\n<span class=\"line\"><span style=\"color: #D8DEE9FF\">    <\/span><span style=\"color: #D8DEE9\">deny<\/span><span style=\"color: #D8DEE9FF\"> <\/span><span style=\"color: #D8DEE9\">all<\/span><span style=\"color: #81A1C1\">;<\/span><\/span>\n<span class=\"line\"><span style=\"color: #D8DEE9FF\">    <\/span><span style=\"color: #D8DEE9\">access_log<\/span><span style=\"color: #D8DEE9FF\"> <\/span><span style=\"color: #D8DEE9\">off<\/span><span style=\"color: #81A1C1\">;<\/span><\/span>\n<span class=\"line\"><span style=\"color: #D8DEE9FF\">    <\/span><span style=\"color: #D8DEE9\">log_not_found<\/span><span style=\"color: #D8DEE9FF\"> <\/span><span style=\"color: #D8DEE9\">off<\/span><span style=\"color: #81A1C1\">;<\/span><\/span>\n<span class=\"line\"><span style=\"color: #ECEFF4\">}<\/span><\/span><\/code><\/pre><\/div>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Apache:<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">No arquivo .htaccess na raiz do seu site. Adicione as seguintes linhas <strong>no topo<\/strong> do arquivo (antes da linha <code># BEGIN WordPress<\/code> para garantir que a regra seja lida primeiro):<\/p>\n\n\n\n<div class=\"wp-block-kevinbatdorf-code-block-pro\" data-code-block-pro-font-family=\"Code-Pro-JetBrains-Mono\" style=\"font-size:.875rem;font-family:Code-Pro-JetBrains-Mono,ui-monospace,SFMono-Regular,Menlo,Monaco,Consolas,monospace;line-height:1.25rem;--cbp-tab-width:2;tab-size:var(--cbp-tab-width, 2)\"><span style=\"display:block;padding:16px 0 0 16px;margin-bottom:-1px;width:100%;text-align:left;background-color:#2e3440ff\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"54\" height=\"14\" viewBox=\"0 0 54 14\"><g fill=\"none\" fill-rule=\"evenodd\" transform=\"translate(1 1)\"><circle cx=\"6\" cy=\"6\" r=\"6\" fill=\"#FF5F56\" stroke=\"#E0443E\" stroke-width=\".5\"><\/circle><circle cx=\"26\" cy=\"6\" r=\"6\" fill=\"#FFBD2E\" stroke=\"#DEA123\" stroke-width=\".5\"><\/circle><circle cx=\"46\" cy=\"6\" r=\"6\" fill=\"#27C93F\" stroke=\"#1AAB29\" stroke-width=\".5\"><\/circle><\/g><\/svg><\/span><span role=\"button\" tabindex=\"0\" style=\"color:#d8dee9ff;display:none\" aria-label=\"Copy\" class=\"code-block-pro-copy-button\"><pre class=\"code-block-pro-copy-button-pre\" aria-hidden=\"true\"><textarea class=\"code-block-pro-copy-button-textarea\" tabindex=\"-1\" aria-hidden=\"true\" readonly>&lt;Files \"xmlrpc.php\"> \nRequire all denied \n&lt;\/Files><\/textarea><\/pre><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" style=\"width:24px;height:24px\" fill=\"none\" viewBox=\"0 0 24 24\" stroke=\"currentColor\" stroke-width=\"2\"><path class=\"with-check\" stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2m-6 9l2 2 4-4\"><\/path><path class=\"without-check\" stroke-linecap=\"round\" stroke-linejoin=\"round\" d=\"M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2\"><\/path><\/svg><\/span><pre class=\"shiki nord\" style=\"background-color: #2e3440ff\" tabindex=\"0\"><code><span class=\"line\"><span style=\"color: #81A1C1\">&lt;<\/span><span style=\"color: #8FBCBB\">Files<\/span><span style=\"color: #D8DEE9FF\"> <\/span><span style=\"color: #ECEFF4\">&quot;<\/span><span style=\"color: #A3BE8C\">xmlrpc.php<\/span><span style=\"color: #ECEFF4\">&quot;<\/span><span style=\"color: #81A1C1\">&gt;<\/span><span style=\"color: #D8DEE9FF\"> <\/span><\/span>\n<span class=\"line\"><span style=\"color: #D8DEE9FF\">Require all denied <\/span><\/span>\n<span class=\"line\"><span style=\"color: #81A1C1\">&lt;\/<\/span><span style=\"color: #8FBCBB\">Files<\/span><span style=\"color: #81A1C1\">&gt;<\/span><\/span><\/code><\/pre><\/div>\n\n\n\n<h4 id=\"h-antes-de-aplicar-saiba-disto\" class=\"wp-block-heading\">\u26a0\ufe0f Antes de aplicar, saiba disto:<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">Bloquear o <code>xmlrpc.php<\/code> vai quebrar as seguintes funcionalidades:<\/p>\n\n\n\n<ol start=\"1\" class=\"wp-block-list\">\n<li><strong>Plugin Jetpack:<\/strong> Muitos m\u00f3dulos do Jetpack dependem desse arquivo para se comunicar com os servidores da Automattic.<\/li>\n\n\n\n<li><strong>App Mobile do WordPress:<\/strong> Voc\u00ea n\u00e3o conseguir\u00e1 gerenciar o site pelo aplicativo de celular oficial.<\/li>\n\n\n\n<li><strong>Pingbacks\/Trackbacks:<\/strong> Seu blog n\u00e3o receber\u00e1 notifica\u00e7\u00f5es autom\u00e1ticas de links de outros blogs.<\/li>\n<\/ol>\n\n\n\n<h3 id=\"h-5-web-application-firewall-waf\" class=\"wp-block-heading\">5. Web Application Firewall (WAF)<\/h3>\n\n\n\n<h4 id=\"h-o-que-e-waf\" class=\"wp-block-heading\">O que \u00e9 WAF?<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>WAF<\/strong> (Web Application Firewall) \u00e9 uma camada de seguran\u00e7a que fica entre a internet e o seu site, inspecionando todo o tr\u00e1fego HTTP\/HTTPS antes que ele chegue ao WordPress. Ele analisa as requisi\u00e7\u00f5es em tempo real e bloqueia as que parecem maliciosas \u2014 sem precisar que a amea\u00e7a j\u00e1 tenha chegado ao servidor.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">O diagrama abaixo mostra como o tr\u00e1fego flui pelo WAF antes de chegar ao WordPress:<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img data-opt-id=158407766  fetchpriority=\"high\" decoding=\"async\" width=\"742\" height=\"355\" src=\"https:\/\/mlkpd8g42nae.i.optimole.com\/w:auto\/h:auto\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2026\/01\/trafego_pelo_waf.jpg\" alt=\"tr\u00e1fego pelo waf\" class=\"wp-image-7158\" srcset=\"https:\/\/mlkpd8g42nae.i.optimole.com\/w:742\/h:355\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2026\/01\/trafego_pelo_waf.jpg 742w, https:\/\/mlkpd8g42nae.i.optimole.com\/w:300\/h:144\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2026\/01\/trafego_pelo_waf.jpg 300w, https:\/\/mlkpd8g42nae.i.optimole.com\/w:230\/h:110\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2026\/01\/trafego_pelo_waf.jpg 230w, https:\/\/mlkpd8g42nae.i.optimole.com\/w:350\/h:167\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2026\/01\/trafego_pelo_waf.jpg 350w, https:\/\/mlkpd8g42nae.i.optimole.com\/w:480\/h:230\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2026\/01\/trafego_pelo_waf.jpg 480w\" sizes=\"(max-width: 742px) 100vw, 742px\" \/><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">N\u00e3o deixe o PHP filtrar ataques SQL Injection ou XSS. Fa\u00e7a isso antes.<br><strong>Tenha no seu servidor:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>ModSecurity + OWASP CRS(Nginx,Apache,LiteSpeed,OpenLiteSpeed):<\/strong> \u00c9 o padr\u00e3o da ind\u00fastria. Ele analisa os pacotes de entrada e bloqueia padr\u00f5es de ataque conhecidos antes que eles toquem o WordPress.<\/li>\n\n\n\n<li><strong>Nginx Rate Limiting:<\/strong> Configure limites de requisi\u00e7\u00f5es por segundo para a p\u00e1gina <code>wp-login.php<\/code>. Um humano n\u00e3o faz 10 tentativas de login por segundo, um bot sim.<\/li>\n<\/ul>\n\n\n\n<h3 id=\"h-6-escondendo-a-infraestrutura-no-seu-servidor\" class=\"wp-block-heading\">6. Escondendo a Infraestrutura no seu servidor<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Informa\u00e7\u00e3o \u00e9 poder para o atacante. N\u00e3o anuncie suas vers\u00f5es.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Desative a assinatura do servidor (Server Signature).<\/li>\n\n\n\n<li>Remova cabe\u00e7alhos como <code>X-Powered-By: PHP\/8.1<\/code>.<\/li>\n\n\n\n<li>Bloqueie acesso a arquivos &#8220;invis\u00edveis&#8221; ou de texto que desenvolvedores esquecem: <code>.git<\/code>, <code>.env<\/code>, <code>readme.html<\/code>, <code>license.txt<\/code>.<\/li>\n<\/ul>\n\n\n\n<h3 id=\"h-resumo-da-estrategia\" class=\"wp-block-heading\">Resumo da Estrat\u00e9gia<\/h3>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><thead><tr><td><strong>Camada<\/strong><\/td><td><strong>A\u00e7\u00e3o<\/strong><\/td><td><strong>Objetivo<\/strong><\/td><\/tr><\/thead><tbody><tr><td><strong>Borda<\/strong><\/td><td>Firewall \/ <a href=\"https:\/\/helpsysadmin.com.br\/blog\/fail2ban-vs-crowdsec-em-producao\/\" data-internallinksmanager029f6b8e52c=\"4\" title=\"Fail2Ban vs CrowdSec em Produ\u00e7\u00e3o: Qual \u00e9 a Melhor Solu\u00e7\u00e3o de Seguran\u00e7a para Servidores Linux?\" target=\"_blank\" rel=\"noopener\">Fail2Ban<\/a> \/ Crowdsec<\/td><td>Bloquear IPs agressivos e portas n\u00e3o usadas.<\/td><\/tr><tr><td><strong>Web Server<\/strong><\/td><td>Nginx\/Apache Rules<\/td><td>Bloquear XMLRPC, limitar acesso ao wp-login, esconder headers.<\/td><\/tr><tr><td><strong>Sistema<\/strong><\/td><td><code>chattr +i<\/code><\/td><td>Tornar o <code>wp-config.php<\/code> indestrut\u00edvel.<\/td><\/tr><tr><td><strong>PHP<\/strong><\/td><td><code>disable_functions<\/code><\/td><td>Impedir que o WP execute comandos de shell (bash).<\/td><\/tr><tr><td><strong>Aplica\u00e7\u00e3o<\/strong><\/td><td>Plugin de Cache\/Seguran\u00e7a<\/td><td>Auditoria de arquivos e 2FA (\u00faltima linha de defesa).<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong><a href=\"https:\/\/helpsysadmin.com.br\" target=\"_blank\" rel=\"noreferrer noopener\">Clique aqui e consulte nossos planos de Gerenciamento de Servidor<\/a><\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Veja mais: <a href=\"https:\/\/helpsysadmin.com.br\/blog\/guia-completo-do-directadmin-para-administradores\/\" target=\"_blank\" rel=\"noreferrer noopener\"><strong>Guia Completo do DirectAdmin para Administradores | Instala\u00e7\u00e3o, Seguran\u00e7a e Performance<\/strong><\/a><br>Veja mais: <strong><a href=\"https:\/\/helpsysadmin.com.br\/blog\/configurar-lemp-com-wordpress-e-lets-encrypt\/\" target=\"_blank\" rel=\"noreferrer noopener\">Como configurar lemp com wordpress e let\u00b4s encrypt<\/a><\/strong><br>Veja mais: <strong><a href=\"https:\/\/helpsysadmin.com.br\/blog\/configurar-lamp-com-wordpress-e-lets-encrypt\/\" target=\"_blank\" rel=\"noreferrer noopener\">Como configurar lamp com wordpress e let\u00b4s encrypt<\/a><\/strong><br>Veja mais: <strong><a href=\"https:\/\/helpsysadmin.com.br\/blog\/listar-diretorios-e-arquivos-em-ordem-crescente\/\" target=\"_blank\" rel=\"noreferrer noopener\">Criando atalho para listar diret\u00f3rios e arquivos em ordem crescente<\/a><\/strong><br>Veja mais: <strong><a href=\"https:\/\/helpsysadmin.com.br\/blog\/como-instalar-openlitespeed-no-ubuntu-20-04\/\" target=\"_blank\" rel=\"noreferrer noopener\">Como Instalar Openlitespeed no Ubuntu 20.04<\/a><\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Muitos administradores confiam apenas em plugins de seguran\u00e7a (como Wordfence ou iThemes), mas a verdade dura \u00e9: plugins rodam em n\u00edvel de [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":2328,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4197],"tags":[],"class_list":["post-2327","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-seguranca-e-hardening"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.9 (Yoast SEO v27.9) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Seguran\u00e7a no WordPress em n\u00edvel de servidor e usu\u00e1rio<\/title>\n<meta name=\"description\" content=\"Muitos administradores confiam apenas em plugins de seguran\u00e7a (como Wordfence ou iThemes), mas a verdade dura \u00e9: plugins rodam em n\u00edvel de aplica\u00e7\u00e3o (PHP).\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/\" \/>\n<meta property=\"og:locale\" content=\"pt_BR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Seguran\u00e7a no WordPress em n\u00edvel de servidor e usu\u00e1rio\" \/>\n<meta property=\"og:description\" content=\"Muitos administradores confiam apenas em plugins de seguran\u00e7a (como Wordfence ou iThemes), mas a verdade dura \u00e9: plugins rodam em n\u00edvel de aplica\u00e7\u00e3o (PHP).\" \/>\n<meta property=\"og:url\" content=\"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/\" \/>\n<meta property=\"og:site_name\" content=\"Blog HelpSysAdmin\" \/>\n<meta property=\"article:published_time\" content=\"2026-01-03T02:42:13+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-15T09:09:43+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/mlkpd8g42nae.i.optimole.com\/w:auto\/h:auto\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2026\/01\/Seguranca-no-WordPress.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"1000\" \/>\n\t<meta property=\"og:image:height\" content=\"598\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"HelpSysAdmin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@brhelpsysad\" \/>\n<meta name=\"twitter:site\" content=\"@brhelpsysad\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/seguranca-wordpress-servidor\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/seguranca-wordpress-servidor\\\/\"},\"author\":{\"name\":\"HelpSysAdmin\",\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/#\\\/schema\\\/person\\\/bdbe3d7d71a0c6a3cb474c18da574efb\"},\"headline\":\"Seguran\u00e7a no WordPress em n\u00edvel de servidor e usu\u00e1rio\",\"datePublished\":\"2026-01-03T02:42:13+00:00\",\"dateModified\":\"2026-06-15T09:09:43+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/seguranca-wordpress-servidor\\\/\"},\"wordCount\":829,\"publisher\":{\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/seguranca-wordpress-servidor\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\/\\/helpsysadmin.com.br\\/blog\\/wp-content\\/uploads\\/2026\\/01\\/Seguranca-no-WordPress.webp\",\"articleSection\":[\"Seguran\u00e7a e Hardening\"],\"inLanguage\":\"pt-BR\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/seguranca-wordpress-servidor\\\/\",\"url\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/seguranca-wordpress-servidor\\\/\",\"name\":\"Seguran\u00e7a no WordPress em n\u00edvel de servidor e usu\u00e1rio\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/seguranca-wordpress-servidor\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/seguranca-wordpress-servidor\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\/\\/helpsysadmin.com.br\\/blog\\/wp-content\\/uploads\\/2026\\/01\\/Seguranca-no-WordPress.webp\",\"datePublished\":\"2026-01-03T02:42:13+00:00\",\"dateModified\":\"2026-06-15T09:09:43+00:00\",\"description\":\"Muitos administradores confiam apenas em plugins de seguran\u00e7a (como Wordfence ou iThemes), mas a verdade dura \u00e9: plugins rodam em n\u00edvel de aplica\u00e7\u00e3o (PHP).\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/seguranca-wordpress-servidor\\\/#breadcrumb\"},\"inLanguage\":\"pt-BR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/seguranca-wordpress-servidor\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/seguranca-wordpress-servidor\\\/#primaryimage\",\"url\":\"https:\\/\\/helpsysadmin.com.br\\/blog\\/wp-content\\/uploads\\/2026\\/01\\/Seguranca-no-WordPress.webp\",\"contentUrl\":\"https:\\/\\/helpsysadmin.com.br\\/blog\\/wp-content\\/uploads\\/2026\\/01\\/Seguranca-no-WordPress.webp\",\"width\":1000,\"height\":598},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/seguranca-wordpress-servidor\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Seguran\u00e7a no WordPress em n\u00edvel de servidor e usu\u00e1rio\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/\",\"name\":\"Blog HelpSysAdmin\",\"description\":\"Webserver linux blog\",\"publisher\":{\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/#organization\"},\"alternateName\":\"HelpSysAdmin Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"pt-BR\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/#organization\",\"name\":\"HelpSysAdmin Gerenciamento de Servidores\",\"alternateName\":\"HelpSysAdmin\",\"url\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\/\\/mlkpd8g42nae.i.optimole.com\\/w:512\\/h:512\\/q:mauto\\/f:best\\/https:\\/\\/helpsysadmin.com.br\\/blog\\/wp-content\\/uploads\\/2020\\/12\\/favicon.png\",\"contentUrl\":\"https:\\/\\/mlkpd8g42nae.i.optimole.com\\/w:512\\/h:512\\/q:mauto\\/f:best\\/https:\\/\\/helpsysadmin.com.br\\/blog\\/wp-content\\/uploads\\/2020\\/12\\/favicon.png\",\"width\":512,\"height\":512,\"caption\":\"HelpSysAdmin Gerenciamento de Servidores\"},\"image\":{\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/brhelpsysad\",\"https:\\\/\\\/mastodon.social\\\/@helpsysadmin\"],\"description\":\"Oferecemos o gerenciamento de servidores dedicados, vps ou cloud. Apresentamos a melhor experi\u00eancia em atendimento e servi\u00e7o. Nosso time cuidar\u00e1 do seu servidor com backups, an\u00e1lises constantes, ajustes de seguran\u00e7a, realiza\u00e7\u00e3o de manuten\u00e7\u00e3o preventiva e corretiva, otimiza\u00e7\u00e3o de performance al\u00e9m de monitoramento 24\u00d77 com suporte Pr\u00f3 Ativo.\",\"numberOfEmployees\":{\"@type\":\"QuantitativeValue\",\"minValue\":\"1\",\"maxValue\":\"10\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/#\\\/schema\\\/person\\\/bdbe3d7d71a0c6a3cb474c18da574efb\",\"name\":\"HelpSysAdmin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/efc0007e6a313a844b72de257e05c6083b07b6ecc6983a4f71e06293ff2e22fd?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/efc0007e6a313a844b72de257e05c6083b07b6ecc6983a4f71e06293ff2e22fd?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/efc0007e6a313a844b72de257e05c6083b07b6ecc6983a4f71e06293ff2e22fd?s=96&d=mm&r=g\",\"caption\":\"HelpSysAdmin\"},\"sameAs\":[\"https:\\\/\\\/helpsysadmin.com.br\\\/blog\\\/\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Seguran\u00e7a no WordPress em n\u00edvel de servidor e usu\u00e1rio","description":"Muitos administradores confiam apenas em plugins de seguran\u00e7a (como Wordfence ou iThemes), mas a verdade dura \u00e9: plugins rodam em n\u00edvel de aplica\u00e7\u00e3o (PHP).","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/","og_locale":"pt_BR","og_type":"article","og_title":"Seguran\u00e7a no WordPress em n\u00edvel de servidor e usu\u00e1rio","og_description":"Muitos administradores confiam apenas em plugins de seguran\u00e7a (como Wordfence ou iThemes), mas a verdade dura \u00e9: plugins rodam em n\u00edvel de aplica\u00e7\u00e3o (PHP).","og_url":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/","og_site_name":"Blog HelpSysAdmin","article_published_time":"2026-01-03T02:42:13+00:00","article_modified_time":"2026-06-15T09:09:43+00:00","og_image":[{"width":1000,"height":598,"url":"https:\/\/mlkpd8g42nae.i.optimole.com\/w:auto\/h:auto\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2026\/01\/Seguranca-no-WordPress.webp","type":"image\/webp"}],"author":"HelpSysAdmin","twitter_card":"summary_large_image","twitter_creator":"@brhelpsysad","twitter_site":"@brhelpsysad","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/#article","isPartOf":{"@id":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/"},"author":{"name":"HelpSysAdmin","@id":"https:\/\/helpsysadmin.com.br\/blog\/#\/schema\/person\/bdbe3d7d71a0c6a3cb474c18da574efb"},"headline":"Seguran\u00e7a no WordPress em n\u00edvel de servidor e usu\u00e1rio","datePublished":"2026-01-03T02:42:13+00:00","dateModified":"2026-06-15T09:09:43+00:00","mainEntityOfPage":{"@id":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/"},"wordCount":829,"publisher":{"@id":"https:\/\/helpsysadmin.com.br\/blog\/#organization"},"image":{"@id":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/#primaryimage"},"thumbnailUrl":"https:\/\/mlkpd8g42nae.i.optimole.com\/w:auto\/h:auto\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2026\/01\/Seguranca-no-WordPress.webp","articleSection":["Seguran\u00e7a e Hardening"],"inLanguage":"pt-BR"},{"@type":"WebPage","@id":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/","url":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/","name":"Seguran\u00e7a no WordPress em n\u00edvel de servidor e usu\u00e1rio","isPartOf":{"@id":"https:\/\/helpsysadmin.com.br\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/#primaryimage"},"image":{"@id":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/#primaryimage"},"thumbnailUrl":"https:\/\/mlkpd8g42nae.i.optimole.com\/w:auto\/h:auto\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2026\/01\/Seguranca-no-WordPress.webp","datePublished":"2026-01-03T02:42:13+00:00","dateModified":"2026-06-15T09:09:43+00:00","description":"Muitos administradores confiam apenas em plugins de seguran\u00e7a (como Wordfence ou iThemes), mas a verdade dura \u00e9: plugins rodam em n\u00edvel de aplica\u00e7\u00e3o (PHP).","breadcrumb":{"@id":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/#breadcrumb"},"inLanguage":"pt-BR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/"]}]},{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/#primaryimage","url":"https:\/\/mlkpd8g42nae.i.optimole.com\/w:auto\/h:auto\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2026\/01\/Seguranca-no-WordPress.webp","contentUrl":"https:\/\/mlkpd8g42nae.i.optimole.com\/w:auto\/h:auto\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2026\/01\/Seguranca-no-WordPress.webp","width":1000,"height":598},{"@type":"BreadcrumbList","@id":"https:\/\/helpsysadmin.com.br\/blog\/seguranca-wordpress-servidor\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/helpsysadmin.com.br\/blog\/"},{"@type":"ListItem","position":2,"name":"Seguran\u00e7a no WordPress em n\u00edvel de servidor e usu\u00e1rio"}]},{"@type":"WebSite","@id":"https:\/\/helpsysadmin.com.br\/blog\/#website","url":"https:\/\/helpsysadmin.com.br\/blog\/","name":"Blog HelpSysAdmin","description":"Webserver linux blog","publisher":{"@id":"https:\/\/helpsysadmin.com.br\/blog\/#organization"},"alternateName":"HelpSysAdmin Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/helpsysadmin.com.br\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"pt-BR"},{"@type":"Organization","@id":"https:\/\/helpsysadmin.com.br\/blog\/#organization","name":"HelpSysAdmin Gerenciamento de Servidores","alternateName":"HelpSysAdmin","url":"https:\/\/helpsysadmin.com.br\/blog\/","logo":{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/helpsysadmin.com.br\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/mlkpd8g42nae.i.optimole.com\/w:512\/h:512\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2020\/12\/favicon.png","contentUrl":"https:\/\/mlkpd8g42nae.i.optimole.com\/w:512\/h:512\/q:mauto\/f:best\/https:\/\/helpsysadmin.com.br\/blog\/wp-content\/uploads\/2020\/12\/favicon.png","width":512,"height":512,"caption":"HelpSysAdmin Gerenciamento de Servidores"},"image":{"@id":"https:\/\/helpsysadmin.com.br\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/brhelpsysad","https:\/\/mastodon.social\/@helpsysadmin"],"description":"Oferecemos o gerenciamento de servidores dedicados, vps ou cloud. Apresentamos a melhor experi\u00eancia em atendimento e servi\u00e7o. Nosso time cuidar\u00e1 do seu servidor com backups, an\u00e1lises constantes, ajustes de seguran\u00e7a, realiza\u00e7\u00e3o de manuten\u00e7\u00e3o preventiva e corretiva, otimiza\u00e7\u00e3o de performance al\u00e9m de monitoramento 24\u00d77 com suporte Pr\u00f3 Ativo.","numberOfEmployees":{"@type":"QuantitativeValue","minValue":"1","maxValue":"10"}},{"@type":"Person","@id":"https:\/\/helpsysadmin.com.br\/blog\/#\/schema\/person\/bdbe3d7d71a0c6a3cb474c18da574efb","name":"HelpSysAdmin","image":{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/secure.gravatar.com\/avatar\/efc0007e6a313a844b72de257e05c6083b07b6ecc6983a4f71e06293ff2e22fd?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/efc0007e6a313a844b72de257e05c6083b07b6ecc6983a4f71e06293ff2e22fd?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/efc0007e6a313a844b72de257e05c6083b07b6ecc6983a4f71e06293ff2e22fd?s=96&d=mm&r=g","caption":"HelpSysAdmin"},"sameAs":["https:\/\/helpsysadmin.com.br\/blog\/"]}]}},"lang":"pt","translations":{"pt":2327},"pll_sync_post":{},"_links":{"self":[{"href":"https:\/\/helpsysadmin.com.br\/blog\/wp-json\/wp\/v2\/posts\/2327","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/helpsysadmin.com.br\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/helpsysadmin.com.br\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/helpsysadmin.com.br\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/helpsysadmin.com.br\/blog\/wp-json\/wp\/v2\/comments?post=2327"}],"version-history":[{"count":12,"href":"https:\/\/helpsysadmin.com.br\/blog\/wp-json\/wp\/v2\/posts\/2327\/revisions"}],"predecessor-version":[{"id":7193,"href":"https:\/\/helpsysadmin.com.br\/blog\/wp-json\/wp\/v2\/posts\/2327\/revisions\/7193"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/helpsysadmin.com.br\/blog\/wp-json\/wp\/v2\/media\/2328"}],"wp:attachment":[{"href":"https:\/\/helpsysadmin.com.br\/blog\/wp-json\/wp\/v2\/media?parent=2327"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/helpsysadmin.com.br\/blog\/wp-json\/wp\/v2\/categories?post=2327"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/helpsysadmin.com.br\/blog\/wp-json\/wp\/v2\/tags?post=2327"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}