• WordPress ¹⁾
• Realm of Espionage
• https://blog.realmofespionage.xyz

• Windows 10 (21H2)
• nginx + PHP + PHP-CGI
• Certbot (Let's Encrypt)
• Git
• MariaDB

• https://wordpress.org/about/requirements/
• https://make.wordpress.org/hosting/handbook/server-environment/#php-extensions

• https://github.com/WordPress/WordPress/commits/master/

"%ProgramFiles%\Git\bin\git.exe" clone --branch "master" --depth "1" --recurse-submodules "https://github.com/WordPress/WordPress.git" "%SystemDrive%\www\blog"

"%ProgramFiles%\MariaDB 12.2\bin\mariadb.exe" -u "root" -p

CREATE DATABASE wordpress;

CREATE USER 'wordpress'@'localhost' IDENTIFIED BY 'x';

GRANT ALL PRIVILEGES ON wordpress.* to 'wordpress'@'localhost';

FLUSH PRIVILEGES;EXIT;

"notepad.exe" "%SystemDrive%\www\php\blog.ini"

[PHP]
extension_dir = ".\ext"
extension = "curl"
extension = "exif"
extension = "fileinfo"
extension = "gd"
extension = "intl"
extension = "mbstring"
extension = "mysqli"
extension = "openssl"
extension = "sodium"

error_reporting = "~E_ALL"
display_errors = "Off"
log_errors = "Off"

[Date]
date.timezone = "America/New_York"

; End

"php.exe" -c "%SystemDrive%\www\php\blog.ini" -m

"notepad.exe" "%SystemDrive%\www\nginx\default.d\blog.conf"

location "~" "\.(php)(/.*)?$" {

 fastcgi_split_path_info "^(.+\.(?:php))(/.*)$";
 fastcgi_intercept_errors "on";
 fastcgi_index "index.php";
 include "C:/www/nginx/conf/fastcgi_params";
 fastcgi_param "SCRIPT_FILENAME" "$document_root$fastcgi_script_name";
 fastcgi_param "PATH_INFO" "$fastcgi_path_info";
 fastcgi_param "HTTPS" "on";

 fastcgi_pass "127.0.0.1:9004";
 
}

# End

• https://github.com/WordPress/WordPress/tree/master/wp-content/themes
• Deny all except twentytwentyfive
• 2025/11/21: No twentytwentysix (2026) yet

"notepad.exe" "%SystemDrive%\www\nginx\default.d\wp-themes-deny.conf"

 location "~" "/wp-content/themes/(twentyeleven|twentyfifteen|twentyfourteen|twentynineteen|twentyseventeen|twentysixteen|twentyten|twentythirteen|twentytwelve|twentytwentyfour|twentytwentyone|twentytwentythree|twentytwentytwo|twentytwenty)/" {
  deny "all";
 }

# End

"notepad.exe" "%SystemDrive%\www\nginx\vhosts.d\blog.conf"

server {

 listen "443" "ssl";
 http2 "on";
 server_name "blog.realmofespionage.xyz";
 root "C:/www/blog";
 index "index.php";

 include "C:/www/nginx/default.d/blog.conf";
 include "C:/www/nginx/default.d/headers.conf";
 include "C:/www/nginx/default.d/wp-themes-deny.conf";

 client_max_body_size "10M";

# access_log "logs/blog-access.log";
# error_log "logs/blog-error.log";

 location "/" {
  try_files "$uri" "$uri/" "/index.php?$args";
 }

 rewrite "/wp-admin$" "$scheme://$host$uri/" "permanent";

}

# End

"%SystemDrive%\www\scripts\nginx\Reload.bat"

MKDIR "%SystemDrive%\www\scripts\blog"

"explorer.exe" "%SystemDrive%\www\scripts\blog"

"notepad.exe" "%SystemDrive%\www\scripts\blog\PHP-CGI.bat"

SET "PHP_FCGI_MAX_REQUESTS=0"
SET "PHP_FCGI_CHILDREN=1"

START "Blog PHP-CGI" /MIN "php-cgi.exe" -b "127.0.0.1:9004" -c "%SystemDrive%\www\php\blog.ini" -q

:: End

"%SystemDrive%\www\scripts\blog\PHP-CGI.bat"

"notepad.exe" "%SystemDrive%\www\scripts\blog\Update.bat"

@echo off

TITLE Blog Updater

"%ProgramFiles%\Git\bin\git.exe" -C "%SystemDrive%\www\blog" reset --hard "origin/master"
"%ProgramFiles%\Git\bin\git.exe" -C "%SystemDrive%\www\blog" pull origin "master" --rebase

:: End

"%SystemDrive%\www\scripts\blog\Update.bat"

• D:\Servers\Scheduled Backups

"notepad.exe" "%SystemDrive%\www\scripts\blog\Back-up.bat"

@echo off

TITLE Blog Back-up

:: User\Downloads
::"tar.exe" -czf "%UserProfile%\Downloads\wordpress-files-auto-%RANDOM%.tar.gz" -C "%SystemDrive%\www" "blog"
::"%ProgramFiles%\MariaDB 12.2\bin\mariadb-dump.exe" -u "root" --opt -r "%UserProfile%\Downloads\%RANDOM%-wordpress.sql" "wordpress"

:: NAS
"tar.exe" -czf "D:\Servers\Scheduled Backups\wordpress-files-auto-%RANDOM%.tar.gz" -C "%SystemDrive%\www" "blog"
"%ProgramFiles%\MariaDB 12.2\bin\mariadb-dump.exe" -u "root" --opt -r "D:\Servers\Scheduled Backups\%RANDOM%-wordpress.sql" "wordpress"

:: End

"%SystemDrive%\www\scripts\blog\Back-up.bat"

"notepad.exe" "%SystemDrive%\www\scripts\blog\Maintenance.bat"

@echo off

TITLE Blog Maintenance

MKDIR "%SystemDrive%\www\temp\blog"
MOVE /Y "%SystemDrive%\www\blog\wp-content\uploads" "%SystemDrive%\www\temp\blog"
COPY /Y "%SystemDrive%\www\blog\wp-config.php" "%SystemDrive%\www\temp\blog"

CALL "%SystemDrive%\www\scripts\blog\Git Fix.bat"

MOVE /Y "%SystemDrive%\www\temp\blog\uploads" "%SystemDrive%\www\blog\wp-content"
MOVE /Y "%SystemDrive%\www\temp\blog\wp-config.php" "%SystemDrive%\www\blog\wp-config.php"
RMDIR /S /Q "%SystemDrive%\www\temp\blog"

:: End

"%SystemDrive%\www\scripts\blog\Maintenance.bat"

• wp-content\uploads needs backed-up and restored (see Maintenance.bat)
• wp-config.php needs re-applied afterwards

• Set email for user.email

"notepad.exe" "%SystemDrive%\www\scripts\blog\Git Fix.bat"

@echo off

TITLE Blog Git Fix

RMDIR /S /Q "%SystemDrive%\www\blog\.git"

"%ProgramFiles%\Git\bin\git.exe" -C "%SystemDrive%\www\blog" init --initial-branch="master"
"%ProgramFiles%\Git\bin\git.exe" -C "%SystemDrive%\www\blog" add "."
"%ProgramFiles%\Git\bin\git.exe" -C "%SystemDrive%\www\blog" config "user.email" "espionage724@x"
"%ProgramFiles%\Git\bin\git.exe" -C "%SystemDrive%\www\blog" commit --message="x"

"%ProgramFiles%\Git\bin\git.exe" -C "%SystemDrive%\www\blog" remote add "origin" "https://github.com/WordPress/WordPress.git"
"%ProgramFiles%\Git\bin\git.exe" -C "%SystemDrive%\www\blog" pull --depth "1" --recurse-submodules "origin" "master" --rebase
"%ProgramFiles%\Git\bin\git.exe" -C "%SystemDrive%\www\blog" reset --hard "origin/master"

"%ProgramFiles%\Git\bin\git.exe" -C "%SystemDrive%\www\blog" gc --aggressive --prune="all"
"%ProgramFiles%\Git\bin\git.exe" -C "%SystemDrive%\www\blog" fsck --full --strict

:: End

"%SystemDrive%\www\scripts\blog\Git Fix.bat"

"explorer.exe" "%AppData%\Microsoft\Windows\Start Menu\Programs\StartUp"

"%SystemDrive%\www\scripts\blog\PHP-CGI.bat"

Blog PHP-CGI

taskschd.msc

• 2:00:00 AM daily

Blog Update

"%SystemDrive%\www\scripts\blog\Update.bat"

• Monthly → All months → Days: 3
• 2:15:00 AM

Blog Back-up

"%SystemDrive%\www\scripts\blog\Back-up.bat"

• Monthly → All months → Days: 3
• 2:30:00 AM

Blog Maintenance

"%SystemDrive%\www\scripts\blog\Maintenance.bat"

• https://blog.realmofespionage.xyz

• https://developer.wordpress.org/advanced-administration/wordpress/update-services/#xml-rpc-ping-services

• https://github.com/WordPress/WordPress/blob/master/wp-config-sample.php
• https://developer.wordpress.org/advanced-administration/wordpress/wp-config/

• Change DB_PASSWORD

"notepad.exe" "%SystemDrive%\www\blog\wp-config.php"

<?php

define( 'DB_NAME', 'wordpress' );
define( 'DB_USER', 'wordpress' );
define( 'DB_PASSWORD', 'x' );
define( 'DB_HOST', 'localhost' );
define( 'DB_CHARSET', 'utf8mb4' );
$table_prefix = 'wp_';

define( 'AUTOMATIC_UPDATER_DISABLED', true );
define( 'WP_DEBUG', false );
define( 'WP_DEBUG_DISPLAY', false );

if ( ! defined( 'ABSPATH' ) ) {
	define( 'ABSPATH', __DIR__ . '/' );
}

require_once ABSPATH . 'wp-settings.php';

// End

"tar.exe" -czf "%UserProfile%\Downloads\wordpress-files-manual-%RANDOM%.tar.gz" -C "%SystemDrive%\www" "blog"

CD "%USERPROFILE%\Downloads" && "%PROGRAMFILES%\MariaDB 12.2\bin\mariadb-dump.exe" -u "root" -p --opt -r "wordpress.sql" "wordpress"

• Initial set-up

"%ProgramFiles%\MariaDB 12.2\bin\mariadb.exe" -u "root" -p --execute="CREATE DATABASE wordpress"

"%ProgramFiles%\MariaDB 12.2\bin\mariadb.exe" -u "root" -p "wordpress" < "%UserProfile%\Downloads\wordpress.sql"