Ways to Add More Security to your Website

website-securityThere are several ways that you can add security to your website. You can do any of the following.

Update your versions regularly – This is one of the easiest ways you can do to stay away from hackers. Downloading the latest versions and updates of WordPress, Windows and antivirus programs can make your website or applications tough enough to be cracked by hackers. Through this, hackers will not bother with your site and will move on to other sites that has a non-vigilant owner.

Give boost to your passwords. It may be about time to change your password into something that hackers won’t be able to guess. Avoid using the name of your pet, your spouse or the most dreaded ‘password’. You should not be like other people who are lax even when it comes to choosing passwords for their most sensitive accounts. Select the strong ones and use different ones for your email and banking info and other accounts if you do not want your information or site to be vulnerable.

Remember to lock down the permissions of files. Are you aware of what your file and folder permissions are set? There are some applications requiring them to be set at the open 777 to install and most people forget setting them back to any combination for folders or for files. It is then important to double check yours to ensure.
Be conscious of your links. Do you know the kind of website you are linking to for yours? Experts say that ‘open redirects’ are the main ground for attacks which are committed through browsers. You know what happens when clicking on a bad link, now imaging what would the result be when putting a bad link into your site.

Therefore it is best to always trust completely any site you are linking to.

Utilize FTPS for transfers. Using this handy tool, all of your FTPS transfers will be done using SSL.

Utilize SSL in sending emails. This is especially useful if somewhere in any of your un-trashed mails you have ever sent confidential information through email.

Ensure that your web host runs SUPHP. Under the typical PHP, if the scripts are running as nobody, then your script is open to be accessed. But with suPHP, there is limited access to the user or those explicitly given permission. Not every host is using this so make sure your host is really using it. Not all hosts are similar when it comes to making sure the security of your website. Not all provide round the clock active monitoring on server so selecting a host which seriously takes your security may take some legwork.

Consider going beyond shared hosting. If your site is your bread and butter, it may be the cause that no security amount talks and strength of password could make you feel safe or secured enough. If your website is important to your operations, you may need to go for VPS hosting to achieve peace of mind.

For more information on Website Security please read the following articles:

http://www.smashingmagazine.com/2010/06/15/10-ways-to-beef-up-your-websites-security/

http://codex.wordpress.org/Hardening_WordPress