one. Backup your site about the server.
If you have multiple important Internet site, put them on diverse World wide web hosts. Don’t rely on your Net host for backups.
Locate two different hosts which permit SSH entry. Get an account with each. FTP the backup of one website to another server immediately, and vice versa. Obtain copies to your property computer at the same time.
2. Set a file called ‘index.html’ in every single main or vital directory in your internet site, if it doesn’t have already got just one.
This stops persons looking to peek at other data files in a similar Listing.
three. Do not use previous variations of FormMail. Don't use scripts which can be freshly produced, Until you understand how to check for protection holes.
They should filter enter like # or >. Search about the terms ‘Script Title bug’ or ‘Script Title protection’.
4. Rename any electronic mail scripts you obtain prior to setting up them.
Why give a spammer a clue http://www.bbc.co.uk/search?q=fb 分享 concerning what your script is, and what it can perform?
5. Never give files or directories obvious names, like ‘pass’, ’e-mails’, ‘orders’ along with the like.
Once more, why make it uncomplicated for snoopers?
six. Do not depart unencrypted, private information on your server.
It’s only a computer inside of a room God knows where by, with God is aware of who accessing it.
seven. Use a popular Internet host.
That cheapo a single could be an un-fully commited reseller. Their Google PageRank offers a clue as to how preferred They're. Send out them an electronic mail or two. See how much time it will require to obtain a reply. Take a look at their community forums; how active are they? They don’t Possess a Discussion board? Up coming!
8. For anyone who is creating .htaccess files or every other form of password safety, use lengthy and assorted passwords.
“Ch33s3And0n10n” is lots safer than “cheeseandonion”, and just as unforgettable. Make your password a minimum of 8 people in duration, containing equally letters and figures, and both equally higher and reduced-situation letters. Common phrases might be guessed by brute-pressure cracking systems.
nine. Strip scripts all the way down to the bare Necessities. Up grade them on a regular basis.
Plans like PHPNuke have plenty of options inside the default install. They allow webmasters and users lots of control of website articles. This results in vulnerabilities. A ‘Nuke web site of mine was hacked in the course of Christmas 2005, by an Arabian team. Fortunately, I'd a backup. fb 分享 I didn’t have fast Access to the internet, at time, to update it. I only desired one particular module Doing the job, so I eradicated the inessential kinds, and adjusted file permissions over the admin section. At the time of producing, I’m waiting to check out what comes about future!
Should you don’t truly require it, change it off.
ten. Watch out Anything you say about other people or products on your internet site.
Not really security, but… individuals are pretty Sensitive about criticism. ‘Flame wars’ undoubtedly are a waste of time and energy, so prevent them.