Step 7 from the 7 Day Sequence: 7 Easy Steps to Secure Your Website
Day 7 – one step away from the secure web presence. This is the last step of the security week in our SuperBlog, but this does not mean we are about to stop providing you with tips and tricks for securing your web presence. At the end we will tell you about something easy, but crucial to prevent security breaches on your website – Step 7: Clean Up Your Hosting Account Regularly.
What does this exactly mean and how is it possible for our hosting account to get “dirty”? Users often install a system or a module to see how it works or test an interesting feature.
A problem might occur when we leave those installations unattended and they just stay in our account.
Here are some examples:
- You install a CMS module to see how it works. You do not fancy its features and deactivate it without uninstalling it.
- You install a CMS to see how it works (e.g. Joomla, WordPress, PrestaShop, Drupal, etc.). You test it and leave it in the account after that.
- Later on you decide to migrate your website to a new CMS. You temporarily copy the old version in a separate directory after which you upload the new version to the website. After a while it’s only natural you forget about the old copy.
- You install a new WordPress theme but do not like it. So you deactivate without deleting it.
All these cases are real classic examples of generating abandoned themes, systems or modules.
However, they are stored in your hosting account and provide public access.
With time vulnerabilities occur in some modules or systems. Meanwhile you do not update those since you do not actively use them or even have forgotten about them.
So you provide all possible third parties to publicly accessible vulnerabilities on your account. If a malicious person manages to compromise one of those abandoned systems they will also get access to our active websites.
How to protect our websites?
- Simple as that – delete any plugin or module if you are not using it!
- The same goes if you have unused themes installed.
- In case you have test installations of one or another CMS – remove all of them after you finish testing.
- Also, if you have an old copy of your website made before some update or redesign you should:
- Make sure it is not publicly accessible;
- Password protect it;
- Download it locally and remove it from the account.
It is very simple! Just keep your hosting account clean!
Last, but not least…
The security week in our SuperBlog is nearing to an end. We presented to you 7 easy steps to secure your website so together we can take proper care of all your web projects.
All our customers can be sure that:
- Our Security system SH protect keeps their websites safe. It blocks hundreds of malicious activities without you even noticing. Tens of new rules are added to it every day so that the system gets better and stronger as meanwhile we are cautious and scanning 24/7. We guarantee that if we find a code injected into your website despite our system, we take responsibility to remove it and apply new protection.
- Our DDoS Defense System detects 96% of the known DDoS attacks and blocks them from reaching our customers’ websites.
- Our SuperSupport team is also here to help anytime you need assistance.
- Our custom-developed tools such as BackUp Manager, WordPress Manager and others will always be there to help you protect your website.
Do remember that your hosting account’s security is a shared responsibility and a top priority for us. Our mission is to keep your websites safe and guarantee that your web projects are hosted at the best place.
What can you do to increase your website’s security? If you have reached the end of our sequence, you already know.
Congratulations! You have successfully finished the last step!
If you are currently developing your new web project or looking for a secure home for your website, remember that we at SuperHosting.BG keep space for them!