We can help you secure your server AND learn more about the most common security risks, including injection, authentication, cross-site scripting, denial of service, and security misconfiguration.
In our previous post celebrating National Cyber Security Awareness Month we discussed six simple things you could do on your own to secure your server. While our DIY security tips in that post can be extremely helpful in securing your server, we couldn’t end the conversation without mentioning a few solutions that play a very important role in server security. The following six items are not only important to include in your security plan, but many of them are invaluable in the fight to protect your data.
Firewalls act as the first line of defense for your server, protecting your data by filtering traffic according to a customizable set of rules. With the firewall in place, a barrier is created between your server and the rest of the Internet. Any traffic that attempts to connect to your server is analyzed, and if it is deemed malicious, that traffic is blocked. Our Heroic Support® team can help you set up either our physical Cisco firewall for your dedicated server, or our cloud-enabled firewall for a Storm® cloud server. You can also see our Knowledge Base for help enabling firewalld, a newly implemented firewall, on CentOS 7. In either case, firewalls are necessary for securing your hosting environment against unauthorized third-party access.
Denial of Service or Distributed Denial of Service attacks (DoS or DDoS) are common types of attacks that allow hackers to bring down a network without having to gain internal access. There is no way to prevent these attacks from occurring and no way to anticipate whether you’ll be a target, so DDoS Attack Protection is necessary if you wish to avoid downtime in the unfortunate event you are attacked. A DDoS attack occurs when hackers flood the access routers with fake traffic and overload the system until it fails. Our DDoS Attack Protection system works to differentiate between legitimate and malicious traffic by monitoring a selected network of IP addresses and analyzing traffic that attempts to reach the server. In addition, our Heroic Support® team works with our customers during attacks and regularly tweaks the system to ensure it is working effectively.
An ecommerce business has to reassure its customers their private data will be kept safe and secure or risk losing business. SSL Certificates are the standard for online security, encrypting online transactions to prevent data exposure to hackers. We sell a number of different types of SSL Certificates from GlobalSign, one of the most respected names in the industry. Our SSL Certificates even come paired with Netcraft’s continually updating phishing detection to provide real-time alerts that warn site owners when their websites becomes compromised, ensuring even more protection for your customers’ sensitive data.
A website that is PCI Compliant promises customers that your business has taken all the necessary steps to protect their data when shopping online. The Payment Card Industry’s Data Security Standards (PCI DSS) require businesses to protect customer data through requirements for both their hosting infrastructure and server configuration. We offer a scanning service that can verify your server meets all the PCI DSS requirements, so you can reassure your customers their data is safe. See our Knowledge Base for more explicit information on how to ensure your electronic payments are PCI DSS compliant.
A virtual private network, or VPN, is a tunneled private network of remote sites or users utilizing a public network, like the Internet, to connect to each other. A VPN uses encryption to secure your computer’s connection to the Internet and guarantees that all of the data you’re sending and receiving over the VPN is secured from any potential prying third parties. A VPN can be an extremely useful for a growing business to increase productivity without sacrificing security. Learn how to configure your Liquid Web VPN with the help of our Knowledge Base.
Add additional security services and modifications to your server with ServerSecurePLUS™, an exclusive Liquid Web product. ServerSecurePLUS™ greatly enhances the security, reliability, compatibility of your server through daily CXS scans and a number of server hardening initiatives including email protection, service hardening, brute force detection, and secured access via SSH, FTP and RDP. Saving you hours of installation time or the hassle of hiring a system administrator, ServerSecurePLUS™ guarantees that your server’s important data will be protected.
The goal of National Cyber Security Awareness Month is to spread awareness of cyber threats so consumers can learn how to protect themselves. Depending on your business, one or two simple things, like a firewall or SSL certificate, can go a long way to ensuring your server is secure against many of the common cyber attacks seen today. Let us know if you have any further questions about cyber security – our 24/7/365 Heroic Support® is always here to help.
Have you ever been the target of a cyber attack?