Surpass Web Hosting Forums - View Single Post

H · October 18th, 2006, 11:29 PM

Security with web hosting is one of the most crucial components to keeping things happy and stable. Using bad practices and software can result in a lot of damage, if not ruin your site. It's a hard task to keep things secure as some of it is out of your control.

Every piece of software or code you run on the server is subject to attacks. Whether it's self-coded, open-source or something you've purchased. Doesn't seem to matter.. it all gets attacked. SQL injections, mailers, site defacements, cross site scripting and tonnes of other attacks.

One successful attack can take out your site, possibly your server. Generally you can recover a good portion of anything lost, but sometimes you just don't have a back-up to revert to. Keeping all software up-to-date is essential. When a new security patch is released, plan to apply it as soon as you can. Not doing so opens a window of attack... on known and widely used software it can burn you big time. If it's a server component that needs updating, contact the host to let them know. While it's not always possible for a host to update immediately, you can be assured they're aware of it and planning to do the update.

Here's why security actually matters to the individual.

We all use our hosting space for our own purposes. Sometimes it's for a blog... a portfolio... a store... hosting resale or whatever. What's common is that they're all web sites and running on a server, usually a shared server. Security matters to you because it affects others. Whether it be an attack on you that takes out the server or exposed client data. Someone else other than yourself is affected.

That rogue mailer script is impacting performance. They put the script on your server through an unpatched copy of phpBB. All of your hosting clients had their personal information revealed because you stored a back-up within a public directory. Your forum was whiped clean because your admin password was 'admin'.

There's really no time or situations where security isn't much of a concern. It's better to be more aware, more secured and prepared than to find out "oops...".

H says secure your shizzle.

October 18th, 2006, 11:29 PM	#1 (permalink)
H after g, before i Super #1 Joined in Jul 2004 Hosted on Gojira 7,870 posts Gave thanks: 44 Thanked 127 times	Why Security Matters To You Security with web hosting is one of the most crucial components to keeping things happy and stable. Using bad practices and software can result in a lot of damage, if not ruin your site. It's a hard task to keep things secure as some of it is out of your control. Every piece of software or code you run on the server is subject to attacks. Whether it's self-coded, open-source or something you've purchased. Doesn't seem to matter.. it all gets attacked. SQL injections, mailers, site defacements, cross site scripting and tonnes of other attacks. One successful attack can take out your site, possibly your server. Generally you can recover a good portion of anything lost, but sometimes you just don't have a back-up to revert to. Keeping all software up-to-date is essential. When a new security patch is released, plan to apply it as soon as you can. Not doing so opens a window of attack... on known and widely used software it can burn you big time. If it's a server component that needs updating, contact the host to let them know. While it's not always possible for a host to update immediately, you can be assured they're aware of it and planning to do the update. Here's why security actually matters to the individual. We all use our hosting space for our own purposes. Sometimes it's for a blog... a portfolio... a store... hosting resale or whatever. What's common is that they're all web sites and running on a server, usually a shared server. Security matters to you because it affects others. Whether it be an attack on you that takes out the server or exposed client data. Someone else other than yourself is affected. That rogue mailer script is impacting performance. They put the script on your server through an unpatched copy of phpBB. All of your hosting clients had their personal information revealed because you stored a back-up within a public directory. Your forum was whiped clean because your admin password was 'admin'. There's really no time or situations where security isn't much of a concern. It's better to be more aware, more secured and prepared than to find out "oops...". H says secure your shizzle. Last edited by H; October 18th, 2006 at 11:30 PM.