one. Backup your website about the server.
In case you have more than one crucial Web page, set them on diverse Internet hosts. Don’t trust in your Internet host data intergration for backups.
Find two different hosts which allow SSH entry. Get an account with Each and every. FTP the backup of one web page to the other server directly, and vice versa. Obtain copies to your property Personal computer likewise.
two. Set a file identified as ‘index.html’ in each significant or vital Listing in your web site, if it doesn’t already have a person.
This stops individuals trying to peek at other documents in the same Listing.
three. Do not use outdated variations of FormMail. Don't use scripts which might be recently launched, Unless of course you understand how to look for stability holes.
four. Rename any e-mail scripts you down load before setting up them.
Why provide a spammer a clue regarding what your script is, and what it can perform?
five. Don't give data files or directories apparent names, like ‘move’, ’e-mail’, ‘orders’ and the like.
Once again, why allow it to be straightforward for snoopers?
six. Usually do not depart unencrypted, private info on your server.
It’s only a pc in a home God understands wherever, with God appreciates who accessing it.
7. Use a preferred World wide web host.
That cheapo a single may be an un-committed reseller. Their Google PageRank offers a clue regarding how well known These are. Ship them an electronic mail or two. See just how long it requires to acquire a reply. Consider their boards; how hectic are they? They don’t Possess a forum? Up coming!
eight. If you're setting up .htaccess information or any other form of password safety, use extensive and various passwords.
“Ch33s3And0n10n” is quite a bit more secure than “cheeseandonion”, and equally as memorable. Make your password at the least 8 people in size, made up of the two letters and numbers, and each higher and reduce-scenario letters. Normal text might be guessed by brute-power cracking applications.
9. Strip scripts down to the bare essentials. Upgrade them frequently.
Packages like PHPNuke have many functions while in the default put in. They allow site owners and people plenty of control of Internet site content material. This creates vulnerabilities. A ‘Nuke web site of mine was hacked all through Christmas 2005, by an Arabian team. The good news is, I had a backup. I didn’t have speedy internet access, at enough time, to upgrade it. I only needed a single module Performing, so I eliminated the inessential ones, and adjusted file permissions around the admin area. At some time of crafting, I’m waiting around to view what transpires following!
In case you don’t truly need to have it, turn it off.
ten. Be careful Anything you say about Others or solutions on your website.
Not really security, but… persons are pretty Sensitive about criticism. ‘Flame wars’ undoubtedly are a squander of time and Strength, so prevent them.