A Guide To Website Security

With 23,000 new malware samples per day and over 90,000 hacking attacks per minute, keeping your website safe is increasingly becoming very important.

How would you rate your website security? There’s a great chance that it could get better. There is a statistic that 43% of cyber attack target small businesses which shows how important small businesses should take web security.

Lack of website security is a major concern and even big organizations are prone to security breach.

With so much people now on the web and things getting complex, it is imperative you know how to protect your website.

1) Backup! Backup!! Backup!!!

Every website owner should have a backup of their website. This is to avoid you from starting afresh in case something happens to your website or not lose valuable data. A hosting company like Garanntor offers backup service for all its clients on a weekly basis

2) Updates

Ensuring to download updates on any software attached to your website is really an important part in keeping your website secure. This may be your server operating system or any other software like CMS. Hackers are quick to take advantage of any security hole found in any software,which can be avoided by installing the necessary updates.

3) Secure Managed Hosting

The more secure your web server is, the more secure your website is. Ensure hosting your website with a company that takes security seriously.

4) Link Clicks

Make sure you are really sure of a web link before clicking on such links. Spammers can use open redirect on your website to redirect web traffic from your website to the spammer’s website using a link that looks innocent.You can check to see if your is not affected by opening google search and typing sitethedomain.com and replacing “thedomain” with your actual domain.

5) Check Password

See also :   Garanntor Coupon : Save 10% On Web Hosting, Domain Names, VPS

Of course,it’s no news that complex passwords should be used but not everyone uses complex passwords.Ensure complex passwords are used to your admin and server admin area and also encourage web visitors to use strong passwords as well.This may be done by enforcing password requirements like using uppercase, password length etc. Passwords should be encrypted,using one way hashing algorithm. For advanced web security, you may salt the user passwords.

6) Use HTTPS

HTTPS is a protocol that is used to provide security on the internet. HTTPS guarantees that web users are linked to the servers they expect and that nobody can intercept or change whatever they are doing online. It is always highly recommended to use HTTPS, especially when users submit their personal information on your website. Fortunately, some hosting companies like Garanntor offers Let’s encrypt totally free with any web hosting subscription. Let’s encrypt provides automated certificates for enabling HTTPS. Google has also started flagging websites without HTTPS as “not secure”.(Read more).

7) Regular Scanning

Website scanners like Siteheck, Sitelock or Secure can help to scan your website for malware or any suspicious codes. If you think your website has been infected, you will want to scan it immediately. It is also advisable to scan your website once a month to be on the safe side.

8) Advanced Security

If you host your website with a hosting company, you may buy additional security for a token if they offer this. EV certificates, Thwarte SSL 123 are good examples of additional security that can be bought.

Please Share :

2 Comments

Leave a Reply
  1. When I started Hovatek.com, I learnt quite a lot about security the hard way. To add to what you’ve said @Jide:

    Avoid installing abandoned plugins & themes: Before you install a plugin or theme, ensure to check when it was last updated. Unless you’re skilled with php and javascript (to fix bugs), only stick with regularly maintained plugins & themes

    Avoid cracked themes & plugins: If you can’t afford it, just use a free alternative. These cracks might contain shells which (depending on your host) might not get detected. The last thing you want in your public_html is a shell…trust me.

    Stick with reputable & trusted ad networks: I understand that you need ad revenue but its silly to bombard your few users with annoying ads; It stifles your growth. Some ads even begin redirecting your users to malicious websites; tanking your rankings in the process.

  2. I should also add that using the same credentials across several websites is a terrible idea. If one website gets compromised, you’re doomed!

Leave a Reply

We're glad you have chosen to leave a comment. Please keep in mind that comments are moderated according to our comment policy. Your email address is required but will not be published. No keyword stuffing in the name field and commenting from blah blah blah makes no sense. Thank You.

  • Want To Join A Forum Where You Can Discuss Blogging?Click Here
  • NetDivo ePin Manager Lets You Print Airtime Of All NetworksLearn More
inec recruitment portal 2019

INEC Recruitment for 2019 Elections in Nigeria – Portal, Form and How To Apply

why i moved from namecheap to interserver web hosting services

Why I Moved My Websites From Namecheap To Interserver.net