SANDALL.DEV

THE TRIFECTA

Hosting, Maintenance & Security

The stuff under the hood – one of the most important components of your site. This content might make your eyes glaze over, but thankfully we love this stuff.
Every thing you see on this page is what we use for our own sites.

Hosting

The computers and network that your site runs on.

  • All sites are hosted on a platform built exclusively to run WordPress (managed hosting). In short this means unrivalled perfomance, reliability and security.
  • Global Content Delivery Network ensures your site assets physically load from a physically nearby location for maximum speed and availability.
  • Server-side caching cuts down on processing and bandwidth requirements to load pages. This is especially helpful for mobile.
  • Intrusion Detection & Layer 7 firewall protects your sites from many application-layer attacks like XSS or cross-site scripting, cross-site forgery, cookie poisoning, file inclusion, and SQL injection, among others.

Security

Keeping the bad guys out, ensuring everything is as it seems.

  • Full hardening of your website. Unused ports and APIs are blocked which stops attacks before they even begin.
  • Layer 7 firewall that monitors for and blocks things like sql injections, cross-site scripting and DDoS attacks.
  • Real-time monitoring of core files to ensure no foreign code.
  • Smart login protection that cross-checks login attempts against an up-to-the-minute database of known bad actors.
  • Brute force login protection.
  • Incremental backups taken after every detected change to the website to ensure no updates are lost, with 30 days posterity.
  • WordPress author slug obfuscation to conceal usernames.
  • Automatic SSL cert provision provides an encrypted tunnel from your site through to your customers.

Maintenance

Ongoing work we do to keep your site in top shape.

  • Constant updates for WordPress core files, all themes and plugins. This is huge for security and ensuring your site always loads in the constantly changing web environment.
  • Sandboxed updates – Never worry if a plugin will break your live e-commerce site – all plugin updates are tested before they’re committed to your live site.
  • Server-side mail logging – Never wonder if your contact forms are working or not. Every site we maintain keeps a record of every form entry and email sent.
  • Email deliverability – We route all emails sent by your site through a service that ensures they don’t end up in spam folders. Very important for e-commerce.
  • Backups. We take backups every time there’s a change on a site – meaning nothing is ever lost, like ever.

Other

Things that don’t fit the categories above.

  • Premium plugin licenses. We maintain agency licenses for a constantly growing suite of tools and plugins, potentially saving you hundreds per month.
  • Cloudflare nameservers. Registrar nameservers have a constant record of going down, making your site inaccessible. Ask us about this, we take care of it for free.
  • Staff dedicated to you. We have awesome support, and we make sure you’re always talking to the same person.
  • Site updates. We don’t just maintain your site, we can work on it too. If it takes us less than 10 minutes, it’s free!

Technical Details

A list of included relevant features for sites we host.

  • WP Cloud infrastructure built end-to-end for WordPress
  • Real-time replication to secondary datacenter for HA/failover
  • Auto-scaling up to 100+ CPU cores under load
  • 28+ global edge data centers for CDN & caching
  • Multi-level caching: edge cache + persistent object cache + server cache
  • OPcache + PHP FPM tuned per-site for low latency
  • NVMe-backed storage for high I/O throughput Anycast routing + network-level DDoS mitigation
  • WAF with custom rulesets & attack signatures Defensive/challenge mode during volumetric or application attacks
  • On-the-fly image compression & optimization at the edge
  • HTTP/2 + HTTP/3 (QUIC) support for faster TLS handshakes TLS 1.2+ enforced, HSTS, and secure cipher suites by default
  • Always-on SSL with automated renewal & forced HTTPS
  • Ultra-fast DNS resolution with platform DNS optimizations
  • Real-time activity logs, security event tracking & audit trails
  • Jetpack Security integration: malware scanning, brute-force protection, 2FA
  • Automated core/plugin/theme patching with configurable staging approvals
  • Daily site backups + hourly DB snapshots + on-demand snapshots
  • Point-in-time recovery for files & DB Site isolation per account / containerized environment per site
  • SSH, WP-CLI, Git access for automation & deployments
  • Staging environment with selective push (files, DB, or both)
  • Managed white-glove migrations with integrity checks
  • Performance monitoring (P95/P99 response, RUM metrics) & reporting
  • Plugin update scheduler and safe-update workflows
  • Postmark transactional email integration for improved deliverability (SMTP API, DKIM/SPF alignment, delivery analytics)
  • Premium agency theme & plugin library — vetted, security-scanned, update-managed
  • Intelligent brute-force protection & IP lockout
  • XML-RPC, pingback,  closed off WordPress author endpoint protection
  • Granular user roles & collaborator access control with SSO/2FA options
  • Free hack recovery assistance + incident response playbook
  • 100% network uptime SLA backed by HA architecture
  • Login & admin URL obfuscation
  • Multi-environment deployment (dev/stage/prod)

Want to know even more?

Get in touch

[email protected]

Spokane, WA

Home
Services
Work
Team
Contact

[email protected]

Spokane, WA

Home
Services
Work
Team
Contact