How to secure your website?

Pusya

Member
Registered
Joined
Nov 9, 2018
Messages
18
Points
3
Hello!

What's the best way for a beginner to secure a website?
It should be efficient, cheap and with a high quality.

I'm a starting blogger who is about to open an "equivalent" website to the blog. I won't heavily overload the website with information, but basic security would be nice to protect it.

So how does it work?
 

Dr. McKay

Well-known member
Registered
Joined
Nov 26, 2016
Messages
565
Points
28
What's the best way for a beginner to secure a website?
Read around posts on the forum or ask your questions, don't forget to ask your hosting provider to secure your website, it is one of easy ways to start secure a website for beginner.
It should be efficient, cheap and with a high quality.
Shared hosting and install some firewall as csf firewall, don't use free hosting control panels, if you have a budget, you should go with Directadmin or Plesk.
I'm a starting blogger who is about to open an "equivalent" website to the blog. I won't heavily overload the website with information, but basic security would be nice to protect it.
Keep your password strong as possible, it is recommended to use a VPS than a shared hosting, because you will not be "shared" with others thus you can protect your websites easier if hosting on a private server.
 

M.m

New member
Registered
Joined
Nov 9, 2018
Messages
4
Points
1
To secure your website is, first, if you're a programmer put a security in it like www and or https://. But if you're not a programmer, then hire a programmer or a freelancer and he/she will do the job for you. Make sure the programme you hire is trustworthy.
 

clydeterence

New member
Registered
Joined
Nov 12, 2018
Messages
4
Points
1
The first thing to realize is that no website is ever 100% secure. It's almost always a case of minimizing risk to the greatest extent possible. It seems really common for people to turn to a plugin, modify their .htaccess, or move the wp-config when trying to make their website secure.
In reality, there are three things you should look at first: Using a proper username and password, keeping your core and theme files up to date, and creating regular backups. Those three things alone will prevent most of your problems.
 

Daniel204

Active member
Registered
Joined
Jun 19, 2018
Messages
67
Points
8
I would like to answer the question The best ways to secure website are it should be kept away from the hackers,software should be up to date, watch out for SQL injection, protect from cross-site scripting attacks, must be aware of error messages, validate on both the sites, crosscheck your passwords, get website security tools.

HTH!
 

ridgeword

New member
Registered
Joined
Nov 9, 2018
Messages
9
Points
3
I had my website hacked before, there are random posts inserted on my database that I didn't post. Well, it was fixed by updating my WordPress version (I was 2 releases late), and manually deleting the posts in my database. In addition to that, I noticed that someone has been brute forcing entry on my website, so I added captcha verification on my login page.

So I would definitely agree with Daniel, updating your software (in my case wordpress) and adding security tools and plugins that may help you lessening your site' risk of being hacked. Be careful with the plugins you install as well, make sure that it is used and reviewed by a lot of users already.
 

Malware.Expert

Member
Registered
Joined
Jun 18, 2018
Messages
55
Points
18
1. Keep site up to date (CMS, Plugins, Themes etc). Also select plugins/themes that software manufacturer continuous development them and fix security issues.
2. Use Strong password's and different username's than admin.
3. If possible, enable TWO-STEP Verification / Authentication.
4. Disable also Frontside (from www) editor editing files - ex. https://codex.wordpress.org/Editing_Files
5. Use CMS software hardening tips also. ex: https://codex.wordpress.org/Hardening_WordPress
 

Cheerag Nundlall

Well-known member
Registered
Joined
Oct 12, 2016
Messages
332
Points
18

anig1231

New member
Registered
Joined
Nov 9, 2018
Messages
1
Points
1
Do not use the simple password on your account. Set always a new nickname and make it harder for them to figure out your username and password. There are several security plugins out there.
 

mobin

Well-known member
Registered
Joined
Jun 22, 2017
Messages
234
Points
28
"How to secure website" cannot address until we know the platform, web server, application framework, etc . So this is kind of generic question and you should expect generic answer only like SSL, firewall, WAF, web server hardening, application hardening, etc. So if you are on a shared server, leave those things with your host and choose a host who cares about security! if you are a beginner, I suggest going with Shared hosting as well. More important thing is to keep your application up-to-date, audit it regularly and make sure that no security hole is left. Always choose a strong password, create only necessary logins and advise the users to keep their password secure and change it periodically.
 

webwerksDC

Member
Registered
Joined
May 9, 2018
Messages
54
Points
8
Hello,

To sure your website you need to add SSL certificate on the website. Generally, these certificates are utilized to keep hackers at bay. Presently, they are likewise a vital method to help support positioning on search engines.

Hope this helps.
 

rubeth1726

Member
Registered
Joined
Nov 21, 2018
Messages
18
Points
3
Hello!

What's the best way for a beginner to secure a website?
It should be efficient, cheap and with a high quality.

I'm a starting blogger who is about to open an "equivalent" website to the blog. I won't heavily overload the website with information, but basic security would be nice to protect it.

So how does it work?
Hi! I would like to share my suggestion on how to secure your website so it will not exploit or mess up your website layout or content by hackers or anyone who wants to attempt it.

Here are some ways I know to protect your website:
1. Protect your website with security software or plugins. Have website application firewalls so you should not have to download any software just to use it. If you do so that's a good initial step.
2. Install an SSL certificate and use HTTPS encryption so that you make sure that your website is safe and secure and your data will not be able to decode by the hacker.
3. Of course, have a strong secure password and password should always be stored in encrypted values.
4. Also, keep your website updated in regular basis. Update site's certificate, security and software up to date so that you will not allow any intruders or malware to invade your site.
5. Prevent users from downloading or uploading files directly to your website, it is a big risk. Downloading or uploading files give way to computer virus enter in the system that may affect to slow down the performance of your computer and may lost some important files.

Hope this will help....
 

Nethmanila

Member
Registered
Joined
Nov 21, 2018
Messages
15
Points
3
The best way to secure your website is to change passwords every 3 months or 6 months so nobody can easily hack your account. It should also connected to your mobile phones so if somebody will try to open your account, you can recieve some text or message that somebody is trying to open it.
 

Elliot Martin

Member
Registered
Joined
Jan 6, 2023
Messages
17
Points
1
There are several steps you can take to secure your website. Here are some best practices to follow:

  1. Use HTTPS: Make sure your website is served over HTTPS (HTTP Secure) protocol by obtaining an SSL/TLS certificate. This encrypts the communication between your website and the users' web browser, ensuring that any data that is transmitted is protected from eavesdropping, tampering, or interception.
  2. Keep software up-to-date: Ensure that your website's software and CMS (content management system) is always up-to-date, including plugins, themes, and scripts. This helps protect against known vulnerabilities and exploits.
  3. Use strong passwords: Enforce strong password policies for all user accounts on your website. Use a combination of uppercase and lowercase letters, numbers, and special characters to create strong passwords.
  4. Use a firewall: Install a web application firewall to block malicious traffic, SQL injections, cross-site scripting (XSS) attacks, and other types of malicious activities.
  5. Enable two-factor authentication (2FA): Enable 2FA for all user accounts, requiring users to provide a second form of authentication, such as a code sent via text message or an authentication app, in addition to their password.
  6. Limit access: Limit access to your website's backend to only those who need it. Use strong passwords, and ensure that your hosting account, FTP, and SSH access are all properly secured.
  7. Back up your website: Regularly back up your website and data to a secure location, so you can quickly restore your website if it is compromised.
By following these best practices, you can help secure your website and protect against various types of attacks and security threats.
 

yrhost

New member
Registered
Joined
Sep 15, 2022
Messages
7
Points
1
Hello! As a beginner, there are several steps you can take to secure your website:

  1. Use a secure platform: Choose a reputable website platform, such as WordPress or Squarespace, that has built-in security features and updates regularly to keep up with security threats.
  2. Use strong login credentials: Use a strong and unique username and password combination to access your website's backend. Avoid using default login credentials and weak passwords that are easy to guess.
  3. Use HTTPS: HTTPS encrypts data transmitted between your website and visitors, making it harder for hackers to intercept data. You can obtain an SSL certificate from a certificate authority like Let's Encrypt or your web hosting provider.
  4. Keep software up to date: Regularly update your website's platform and plugins to the latest version. Outdated software can have vulnerabilities that can be exploited by hackers.
  5. Use security plugins: Consider using security plugins, such as Wordfence or Sucuri, to enhance your website's security. These plugins can detect and prevent attacks, scan for malware, and monitor your website's activity.
  6. Backup your website: Regularly back up your website's content and data in case of a security breach. This way, you can quickly restore your website to a previous version if needed.
  7. Monitor website activity: Keep an eye on your website's activity and regularly check for suspicious activity or changes to your website.
 
Older Threads
Replies
5
Views
1,417
fwh
Replies
11
Views
2,387
Replies
0
Views
1,167
Newer Threads
Replies
6
Views
1,565
fwh
Replies
11
Views
2,401
Replies
5
Views
1,799
Latest Threads
Replies
0
Views
139
Replies
4
Views
173
Replies
13
Views
486
Recommended Threads
Replies
3
Views
2,375
Replies
2
Views
2,465

Latest Hosting OffersNew Reviews

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.

Top