This VM image delivers a ready-to-use WordPress® environment running on top of Ubuntu Server 24.04 LTS with a production-ready LEMP stack: Nginx® as the web server, MariaDB® as the database, and PHP® (via php-fpm). PHP is sourced from the official Ondřej Surý PPA to ensure availability of current, LTS-supported versions.

This configuration is built to give users full control over the WordPress environment while minimizing typical setup overhead. By combining pre-integrated installation options, secure service defaults, and operational tooling, it creates a practical foundation for reliable deployments — whether the goal is hands-on customization, automation-driven rollout, or long-term maintenance.

Typical use cases include:

• Hosting blogs, company websites, and documentation platforms
• Deploying staging environments for WordPress development
• Integrating into automation pipelines using wp-cli
• Building custom WordPress-based SaaS products with infrastructure-level access

Key Features:

The image supports two installation flows out of the box: a browser-based WordPress setup available immediately after deployment, and an automated setup path using the preinstalled wp-cli utility.

MariaDB is secured with hardened defaults — all test data and anonymous users are removed, and remote root access is disabled by default. Additionally, the mariadb-backup tool is installed alongside the database to support snapshot-style backups for recovery or migration workflows.

For TLS configuration, Certbot is included with full Nginx integration, allowing certificate provisioning and renewal through standard CLI commands. The system also incorporates Brotli compression and headers-more module support in the Nginx layer, enabling performance tuning and HTTP hardening without manual module setup.

Technical configuration details:

• Preconfigured MariaDB database for WordPress: database name: wordpress; user: wp-user; password: wp-password.
  No root password is configured. It is strongly recommended to change the wp-user password and set a MariaDB root password after deployment.
• Active HTTP site configuration is located at:
  /etc/nginx/sites-available/wordpress
• To complete WordPress installation through the browser, open:
  http://<VM_PUBLIC_IP>/wp-admin
• A sample HTTPS configuration is available at:
  /etc/nginx/snippets
• The directory /etc/nginx/snippets also includes:
  security-headers.conf and brotli.conf — ready-to-include configuration files for enabling security headers and Brotli compression
• Required ports: 80 (HTTP) and 443 (HTTPS).
  Make sure these ports are allowed in your Network Security Group (NSG) settings if you're using a custom NSG.

Deploy a secure, production-grade WordPress runtime with Nginx performance, hardened database defaults, and optional automated provisioning — all in minutes, with minimal post-deployment configuration.

Disclaimer

This virtual machine includes third-party software components that are the sole responsibility of their respective developers or vendors. Their inclusion does not imply affiliation with or endorsement by Belinda CZ s.r.o. All trademarks are the property of their respective owners.