Updates & Announcements
- Announcements & News
  - Additional Disk Storage Pricing Update (2024-2025)
  - WPCloud Responds to New U.S. Blanket Tariffs - A Stable Canadian Solution
  - Enhanced Enterprise Monitoring Plans
  - WPCloud.ca's WordPress Failover Service
Infrastructure & Technical Specifications
- Data Centres
  - WPCloud Server Locations: 100% Canadian Infrastructure
  - WPCloud Sustainable Cloud Computing
  - WPCloud Disaster Recovery (DR) Process
- System Status
  - How to Monitor WPCloud Server Status
Getting Started
Account Management
- Billing & Contracts
  - Understanding WPCloud Billing and Contract Policies
  - Understanding WPCloud Pricing and Currency
  - WPCloud's 30-Day Money Back Guarantee and Refund Policy
  - Non-Profit Discounts at WPCloud
  - Additional Disk Storage Pricing Update (2024-2025)
- Account Setup
  - Understanding WPCloud's Account Setup Process
- Plan Changes
  - How to Change Your WPCloud Hosting Plan
  - How to Add Additional Disk Space to Your WPCloud Hosting Plan
  - Understanding WPCloud's Automatic Disk Space Protection Policy
Domain Management
- WordPress URL Management
  - Can a Single WordPress Page Be Accessed via Subdomain?
  - How to Change Your WordPress Site's Domain Name
- DNS Configuration
  - DNS Management at WPCloud: Complete Guide
WordPress Management
- URL & Permalink Management
  - Resolving WordPress 404 Errors: Permalink and .htaccess Troubleshooting Guid
  - Creating Redirects in WordPress: cPanel and Plugin Methods
- Updates & Maintenance
  - WPCloud's WordPress Update Policy: Our Strategic Approach to Site Stability
- Database Management
  - How to Connect Your Remote Database to WPCloud MySQL
- WordPress Management
  - Guide to Changing PHP Versions Using CloudLinux PHP Selector
  - Increasing WordPress Memory Limit: A Two-Step Process
- PHP Configuration
  - How to Change PHP max_input_vars Using CloudLinux PHP Selector
  - How to Increase WordPress Upload File Size Limit
  - How to Increase PHP Memory Limits for WordPress
  - Configuring PHP Modules for AVIF Support on WPCloud
- File Management
  - Connecting to Your WPCloud Hosting via SFTP and FTPS
Performance Optimization
- LiteSpeed Cache Troubleshooting
  - Managing Disk Space Usage with LiteSpeed Cache: Handling Randomized Scripts
  - Beginner's Guide to LSCache for WPCloud Customers
  - LiteSpeed Cache (LSCache) Advanced Resources and Settings Backup
  - How to Optimize Images Using LSCache
  - Understanding WPCloud's Default Compression: Brotli & Gzip
Backup & Recovery
- Backup
  - WPCloud’s Robust Backup Policy - Enterprise-Grade Data Protection
  - Using JetBackup 4 in cPanel: A Complete Guide to Managing Your Website Backups
Security
- SSL/HTTPS Configuration
  - Implementing HSTS (HTTP Strict Transport Security) on WordPress
  - Understanding SSL Certificates at WPCloud
  - Creating SSL Certificates Using AutoSSL in cPanel
- Spam Protection
  - Understanding WPCloud's Proactive Spam Protection: The WPCloud Spam Plugin
- Firewall Protection
  - WPCloud Security Infrastructure: A Technical Overview
  - Resolving WPCloud Firewall Blocking Issues
  - Locked Out by Wordfence: How to Regain Access and Understanding WPCloud's Security
  - Trusted Provider IP Whitelist System
- Incident Response
  - Suspected Site Hack: What to Do and How to Report
- Password Management
  - Securely Sharing Passwords with Support
- Compliance & Policies
  - Security Testing Policy: Requirements for Vulnerability Scanning and Penetration Testing
Transactional Email Services
- Email Authentication
  - Setting up SPF Records for MailChannels Email Authentication
  - WordPress Transactional Email at WPCloud: System-Generated Email Guide
Support & Resources
- Support Overview
  - Understanding WPCloud Support Scope
  - Introducing WPCloud's New AI Support Bot!
  - Announcing the New WPCloud Knowledge Base!
Advanced Topics
- PHP Configuration
  - How to Enable utf8mb4 Support Using CloudLinux PHP Selector in cPanel
- Analytics & Logs
  - Accessing Raw Access Logs in cPanel
- Server Access
  - Requesting SSH Access
Troubleshooting
- Security Alerts
  - Understanding UCEPROTECT RBL: Why It's Not a Legitimate Concern
- Common WordPress Issues
  - Resolving the Under Maintenance Screen Issue
  - Troubleshooting WordPress Critical Errors: A Comprehensive Guide
  - Understanding and Resolving 503 Errors: Resource Limits Guide
Migration Services
- Migration Services
  - How to Preview Your WPCloud Website Using the Hosts File Method
  - Migration Services: Free Site Migrations to WPCloud
Legal and Compliance
- Audit Reports
  - Requesting a SOC Report
More

Security Testing Policy: Requirements for Vulnerability Scanning and Penetration Testing

Guidelines for requesting authorization for security testing and consequences of unauthorized scanning activities.

Security Testing Policy: Requirements for Vulnerability Scanning and Penetration Testing

Overview

This article outlines WPCloud's mandatory requirements for conducting any security testing, vulnerability scanning, or penetration testing against our infrastructure. Understanding and following these guidelines is crucial to prevent service disruptions and maintain compliance with our Terms of Service.

Prerequisites

Active WPCloud hosting account

Details of planned security testing activities

Testing team's IP addresses

Written authorization from WPCloud before beginning any testing

Important Notice

⚠️ WARNING: Conducting any security testing, vulnerability scanning, or penetration testing without prior written authorization from WPCloud is strictly prohibited and constitutes a violation of our Terms of Service and Acceptable Use Policy.

Required Authorization Process

Submit Authorization Request

📌 Important: Authorization requests must come from an authorized WPCloud account contact.

Email support@wpcloud.ca with the following information:

Domain(s) to be tested

Testing start date and end date

Testing window (time of day)

Complete list of source IP addresses

Testing tools to be used

Company performing the testing

Direct contact information for testing team

Emergency contact number

Wait for Approval

Do not begin testing until you receive written confirmation

Approval typically processed within 1-2 business days

Keep approval documentation for your records

Automatic Protection Systems

WPCloud employs multiple layers of security protection that will automatically block IPs conducting unauthorized scanning:

Imunify360 automated blocking

ModSecurity rule triggers

DDoS protection systems

Brute force protection

📝 Note: These systems cannot be disabled and will block IPs showing scanning behavior, even from authorized users, if proper exemptions are not in place.

IP Blocking and Resolution

If your team's IPs are blocked due to unauthorized testing:

Immediate Actions:

Cease all testing activities immediately

Contact support@wpcloud.ca

Provide your blocked IP addresses

Resolution Process:

Submit required authorization request

Wait for approval and IP whitelisting

Resume testing only after confirmation

Terms of Service Violations

Unauthorized security testing is considered a serious violation:

First Occurrence: Warning and temporary IP block

Repeated Violations: May result in:

Immediate service suspension

Account termination

Potential legal action

Best Practices

Submit authorization requests at least 5 business days before planned testing

Maintain detailed testing logs

Stay within approved testing windows

Use only approved testing IPs

Keep emergency contacts readily available

Common Issues and Solutions

Issue: IP blocked during authorized testing

Solution: Contact support with your authorization reference number

Issue: Emergency testing requirements

Solution: Submit urgent ticket through support portal

Support Options

Authorization Requests: support@wpcloud.ca

Urgent Support: support@wpcloud.ca

Support Portal: https://support.wpcloud.ca/clientarea.php

Did this answer your question?

😞

😐

🤩

Last updated on December 10, 2024

Securely Sharing Passwords with Support Setting up SPF Records for MailChannels Email Authentication

Security Testing Policy: Requirements for Vulnerability Scanning and Penetration Testing

Security Testing Policy: Requirements for Vulnerability Scanning and Penetration Testing

Overview

Prerequisites

Important Notice

Required Authorization Process

Automatic Protection Systems

IP Blocking and Resolution

Terms of Service Violations

Best Practices

Common Issues and Solutions

Support Options

Related Articles