Website Security

Initially, harden the server's security configuration. Update and lock down things that are public-facing on the server. Anything that is public facing that doesn't need to be public facing should be locked down to a VPN or a whitelist IP at the very least. Turn on logging and review the logs from time to time. Invest in DDOS protection - if you upset a hacker and they can't hack your server, they may DDOS out of spite.
 
If this is on a webhosting package, get isecurity, make it very strict, change login page, ban hack attempts/bruteforce. If it's hosted on a vps, install CSF/LFD firewall, hands down awesome.

- Don't install bad plugins that get you hacked :)
- Update regularly.
 
energizedit said:
Look at sucuri they offer a good service that we resell to our customers.
Click to expand...

I can definitely vouch for Sucuri...i rate them highly enough and if you are someone who cares about your site's security then i suggest you give Sucuri.net a try. There is a reason why major publications like TheNextWeb, CNN, PC World, TechCrunch, USAToday are recommending these guys.
 
Security is an on going element. While there are solutions and services for things like this, we should never rely on just one. It should be coupled with your own vigilance as well.
 
Initial hardening, blocking unused ports, setting up VPNs, thorough monitoring, and frequent updates to all OS and software should be a good start. If in doubt consult with your hosting provider or a server security specialist.
 
You must log in or register to reply here.

Latest posts

Forum supporters

Members recently online

Total: 24

Forum statistics

Threads
81,031
Messages
248,642
Members
20,687
Latest member
Sus123
Top