If you run your own web site then security is something you really ought to be paying attention to. Hackers are targeting websites on a daily basis and for many different reasons. It used to be the case that hackers would merely look to plaster graffiti on your home page to bring attention to themselves (or some cause) but nowadays they also have far more sinister motives.
Criminal hackers are now part of large and well organised cyber gangs who see the internet as a huge source of potential profits and they may see your website as a tool that can help them make money, either by stealing your personal information or that of your visitors. Often this can be through the use of Trojans and other types of malware.
Here, then, are a few simple tips on securing your website against such attacks -
Always Remove Or Update Old Scripts
You need to be aware that that old installations are vulnerable. If you run a blog on WordPress then you will know that the platform is regularly updated and that one of the main reasons for that is to patch security holes as and when they are discovered. So, if you have an old installation then you should either update it now or remove it completely if you aren’t using it. Otherwise, a competent hacker could be into your blog in a matter of seconds.
Ensure Strong Password Security
You should never use easy to guess passwords, or the same password more than once, anywhere on the internet. Think about it – if a hacker finds a password of yours then they may well try to use it everywhere in order to gain access not only to your web site but also to other sensitive areas such as your online banking account. In terms of website security, how would you feel if someone else had access to your cPanel or email account?
Cloak Your Folders
Another good tip is to keep a blank index.html file in all of the folders inside your public_html folder. This will make sure that the contents cannot easily be viewed on the internet. CPanel offers such a function – check out ‘Index Manager’. It is always a good idea to keep your files and folders as secret as possible.
Password Protect Your Admin Folder
You should always password protect the admin folder of any scripts you are using as this provides an extra layer of security. Such action is highly recommended and you can do this in cPanel by clicking the ‘Directory Protection’ link.
There is, of course, more you can do to secure your web site — please feel free to add your own tips via the comments section.