Cyber attacks continue to be a major social issue.

In CMS operations, it is very important that the application (administrative screens) not be compromised. IP restrictions or Basic Authentication are the most common ways to protect administrative screens. In particular, Basic Authentication is an easy measure to implement even in a CMS with many users logging in. However, because it required editing configuration files on the server, it was difficult to understand and prone to configuration errors.

So we updated KUSANAGI to support Basic Authentication settings.

Easily add Basic Authentication users and passwords

Users can now add a Basic authentication username and password to the KUSANAGI init command options.

Set up Basic Authentication on the WordPress admin page

When a user newly provision WordPress, Basic authentication is set by default on the WordPress admin page.

Please see below for details.
https://kusanagi.tokyo/en/releases/16393/

We have also upgraded KUSANAGI 9.5.2-1 to allow the installation to be completed at provisioning time to avoid being targeted for the slight time lag before the WordPress installation is complete.

KUSANAGI Improves Convenience and Security of WordPress and Drupal Installations