Security

Zero Trust

All internal apps and servers sit behind Cloudflare Zero Trust. Install the Cloudflare root certificate and the WARP client; authenticate to the account gatewayaccess.

Plesk access policy

Plesk is staff‑only. Clients receive SFTP access on request.

Wordfence defaults (baseline)

Register with webmaster@lightspeedwp.agency and set Firewall → Enabled and Protecting.

(Admin) Bypass Access for specific staging domains

Use Zero Trust → Access → Applications → LightSpeedWP.dev Staging Sites Bypass and add the subdomain under Configure (apply with care).