Keeping your site secure is a never ending process. A lot of clients think that this task is solely up to your web host. While that is true on some accounts, there is also a number of things that you can do to help make sure your site is secure.
We’ll take a look into a few of the many tasks on securing your site.
1) Picking a strong password
This is the most important part in my opinion of keeping your site secure. Time after time we see orders where a customer who’s name may be lets says “James Jones” will select their username as James and password as Jones. In other cases the user may try to select both their username and password as James.
Hackers or anyone trying to access your site without authorization often have lists of username / password combinations that are often used. Picking a password which falls into this category increases the threat of having your account hacked.
Cpanel has a great feature which will generate a secure password for you. However if you want to create a password on your own there are three rules you should always follow: use both upper and lower case letter, user numbers as well as special character, never user dictionary words. A good example of a strong password would be something like U3q$15Vk&!t@.
2) Check for updates on the scripts you are using
Many times a customer will hire someone to setup a site for them. They may install a message board, blog software, or other script. As you only hired them for that task in a lot of cases you have no further communication with them after setup and leave your site as is. However site scripts as with your computer operating system is often updated pretty frequently. Many of the times these aren’t just feature enhancements, but patches to vulnerabilities in the software.
Not updating your software means that your site can still be damaged by this exploit. The better scripts often have notifications on the admin control panel which will notify you when an update is available. However, you should always keep a record of the scripts you have installed and check the developers site at least once per week to see if any updates are available.
3) Keep your computer updates current and use smart practices
Security for your web site starts right at your computer. How else does your files get published to your site, your email checked, or your control panel get logged into?
If using windows you should have automatic updated turned to on or check for updates frequently. You should also have a virus program installed as well as a firewall configured at the minimum. Be sure to be careful of the software you install and make sure it’s from a trusted source. Even if you have followed steps 1 and 2, having a malicious program installed on your computer can make those steps useless.
These are only a few of the steps needed to secure you site as well as computer. As said, this is a never ending process.