If you are running a website, even just for fun, you need to know how to get a secure website. The good news is that this can be a lot simpler than it might sound.
How to get a secure website
The way to get a secure website will depend on what approach you use to create it. Some companies offer a hosting package with a proprietary content management system. These are generally marketed as all-in-one website-building solutions. With these packages, the vendor takes care of everything except the actual content. This includes security.
The downside of these packages is that what you can do with your website is limited to what the vendor supports. That said, these vendors stay in business by providing most, if not all, of what the average SMB is likely to need and/or want. This means that the can be a very viable solution, especially for SMBs on the smaller side.
On the other hand, many SMBs are going to prefer the freedom of choosing their own hosting and their own CMS. This can also be substantially more affordable, which is often a compelling argument for SMBs. In this situation, security is on you, so here is what you need to know.
You need to choose your hosting solution with care
First of all, you need to check that any potential host has a good track record when it comes to maintaining security (as well as uptime and loading time). Once you have found a suitable host, you then need to think about what particular hosting option works best for you. Many hosts will provide a range of options, but ultimately the choice boils down to a dedicated server or some form of sharing arrangement.
Strictly speaking, a dedicated server is the most secure option, because it eliminates any possibility of your site being compromised through someone else’s error. It is, however, also the most expensive option. Shared hosting can be a perfectly viable option provided that you use a competent host, who will promptly suspend accounts at the first sign of anything being amiss.
You also need to be prepared to manage your settings to prevent any malware infections being spread to your website. In particular, you need to pay close attention to your file and directory permissions.
You need to learn about the software you use
First of all, you need to choose your CMS with care. WordPress is popular for a reason and it may be the right option for you, but there are plenty of others such as Drupal, Umbraco, Joomla, and Magento.
Once you’ve chosen your CMS you need to commit to learning it in depth. This means not just figuring out what you need to know to get your website to do what you want it to do, but also what you need to do to keep it secure. This is likely to mean a combination of keeping it updated and choosing the right settings.
Be careful about what third-party extensions you use. Do your research on them before you install them in the first place. Even if they’re not actually malware, they can be so badly written that they might as well be.
Also, if you install it, you need to update it and that means you either need to get updates from the developers or be prepared to make arrangements for it to be updated as necessary. For most SMBs, the latter option is highly unlikely to be practical, so you need to be sure to stick with third-party add ons which are actively supported by their developer.
Implement HTTPS
If you are planning to take payments on your own website, then you will probably be mandated to implement HTTPS. If you are not, then, in principle, it may be optional for you to implement HTTPS. In practice, “look for the padlock” is being drilled into customers by the major internet authorities. This means that businesses that want customers to entrust them with any sort of personal information are likely to find it easier if they can display the HTTPS padlock and prove their security credentials.
Many sites only implement HTTPS on pages that are used to capture sensitive information. There is, however, a case to be made for implementing it on all pages. It adds extra privacy and this can be very valuable if you are accessing a website over a questionable connection, for example using a mobile device on a public WiFi connection.
Limit your administrator accounts
Give administrator accounts to those who need them for as long as they need them and revoke them immediately they cease to be needed. To know more about “how to get a secure website” just contact our technical experts.
Please click here now to have your website scanned, for free, by cWatch from Comodo
Removal
Security stack layer 1
Malware Detect & Removal
Our malware detection scanning, preventive methods and removal enables you to take a proactive approach to protect the business and brand reputation from malware attacks and infections.
- Unsuspecting websites get infected with malicious code.
- Continuous website monitoring to detect any incidents.
- Identify and remediate the cause to hardening your websites.
Comodo cWatch Web can identify malware, provide the tools and methods to remove it, and help to prevent future malware attacks at the edge before it hits the network, included as a paid member.
By clicking the button below, I agree to the Terms of Service and Privacy Policy. Already have an cWatch account? Sign in here
Response
Security stack layer 5
Cyber Security Operations Center
Our exclusive C.S.O.C. is staffed with certified security analysts to monitor, assess and defend websites, applications, databases, data centers, servers, networks, desktops and other endpoints.
- 24 / 7 / 365 security monitoring using state-of-the-art tech.
- Engage clients of complex threats to resolve the issue.
- Real-time web traffic monitoring and proactive incident fixes.
C.S.O.C. checks for threats, identifies and analysis then performs the necessary actions to resolve the issue while offloading costs of in-house experts by using stack layer 3 to handle the heavy lifting.
By clicking the button below, I agree to the Terms of Service and Privacy Policy. Already have an cWatch account? Sign in here
Intelligence
Security stack layer 3
Security Information • Event Management
S.I.E.M. collects logs and events the network traffic and web assets, security devices, operating systems, applications, databases, and reviews the vulnerabilities using artificial intelligence to process.
- Reduces billions of events into prioritized threats real-time.
- Identifies changes in network behavior with activity baselines.
- Flows data searches in real-time streaming or historical mode.
S.I.E.M. senses and tracks significant threats to links to all online supporting data and context for easier investigation. While anomaly detection to identify changes associated with the network safety.
By clicking the button below, I agree to the Terms of Service and Privacy Policy. Already have an cWatch account? Sign in here
Prevention
Security stack layer 4
Web Application Firewall
W.A.F. by Comodo eliminates application vulnerabilities to protect websites and web applications against advanced attacks including Denial-of-Service (DDoS), SQL Injection and Cross-Site Scripting.
- Destroys malicious requests and thwart hack attempts.
- Protection to account registration forms and login pages.
- Malicious bots and brute force attacks are block and patched.
Combined with malware scanning, vulnerability scanning and automatic virtual patching and hardening engines provides robust security is fully managed for Comodo cWatch Web customers.
By clicking the button below, I agree to the Terms of Service and Privacy Policy. Already have an cWatch account? Sign in here
Performance
Security stack layer 2
Add a network of globally distributed servers designed to boost the speed for websites and web applications by transferring content to your user based on their proximity to the nearest CDN web server.
- Proven to increase search engine rankings and site scores.
- 29 worldwide CDN node locations to reach your users.
- Save your bandwidth by leveraging CDN browser caching.
CDN serves your users your website content with virtually unlimited capacity. Giving you the freedom to focus less on site maintenance, more on scaling the uptime of your traffic and target audience.
By clicking the button below, I agree to the Terms of Service and Privacy Policy. Already have an cWatch account? Sign in here
Compliance
Security stack layer 6
Payment Card Industry • Data Security Standard
PCI • DSS ensures that your customers' cardholder info is kept secure from security breaches through a meticulous scan of your network and applications to identify and fix security vulnerabilities.
- Simple and automated way to stay compliant with PCI • DSS.
- Pass the requirements for the 12 points PCI • DSS standard.
- Schedule on-demand PCI scans to report quarterly results.
Establishes and implements a firewall, hardens your environment, disables unnecessary services & configures system parameters to prevent misuse, ensures system audit components are protected.
By clicking the button below, I agree to the Terms of Service and Privacy Policy. Already have an cWatch account? Sign in here
© 2024 Comodo Security Solutions, Inc