• Debugging WPMU
• Bugtracker
• Plugins bugtracker
• Language files
• https://www.wpbeginner.com

• http://codex.wordpress.org/Main_Page
• https://plugins.svn.wordpress.org/wp-fail2ban/trunk/filters.d/wordpress-hard.conf

Check CSF

In setttings->permalinks select custom structure /%postname%/ and make sure you have AllowOverride All in apache config

grep wp_version wp-includes/version.php

grep 'wp-login.* 302 ' accesslog

In .htaccess

# Block WordPress xmlrpc.php requests
<Files xmlrpc.php>
order deny,allow
deny from all
allow from 111.222.333.444
</Files>

or

<Files xmlrpc.php>
       Require all denied
</Files>

   location /xmlrpc.php {
       deny all;
       return 404;
   }

to keep it out of logs

   location /xmlrpc.php {
       deny all;
       log_not_found off;
       access_log off;
       return 404;
   }

Someone trying to access config-sample.php

In wp-config.php:

define('FS_METHOD', 'direct');

Seems to mean wordpress can't write somewhere, so it prompts for user with write access rights Check at least:

wp-content/plugins
wp-content/themes

• http://orangescale.com/blog/2006/06/multiple-sidebars-in-wordpress-widgets/

Install https://en-ca.wordpress.org/plugins/ssh-sftp-updater-support/

In /wp-admin/ !

Posts->Add new, in editor use "add media"

wp-cli

wp core update

Check logs :)

Settings > User Login History

• How to End Trackback Spam in WordPress

Or just deselect Allow link notifications from other blogs (pingbacks and trackbacks) on new posts and in database update existing entries:

update wp_posts set ping_status = 'closed';

fastest cache bug?