Security of Ghost



I intend to migrate Wordpress to Ghost, but I still have questions about Ghost’s security? In Wordpress have the iThemes plugin to increase security, and in Ghost how to secure such? eg: anti Brute-Force login, anti SQL injection,…

I use Ubuntu 18.04, Nginx and MariaDB.


@paopevil Ghost has anti brute-force login protection built-in and has has strong protection against SQL injection (that’s not much of an attack vector with Ghost because there are no visitor-facing forms aside from the subscriber form).

Ghost Security (same topic as before but since can't reply there i create new one)
closed #3

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.