Secure Web Server – How Safe Is Yours? Our 8-Step Checklist Spells Out the ABC’s of Web Security

| June 24, 2016

Secure Web Server – How Safe Is Yours? Our 8-Step Checklist Spells Out the ABC’s of Web Security

If your company has a website, you rely on a web server. And if you’re like any company trying to succeed in cyberspace, you’ll want a secure web server. A web server is an information technology that processes external and internal requests via HTTP. As the transmitter for encrypted credit card information and personal data on many customer-facing websites, third-party threats and viruses could be your undoing if your web server is not secure.

A multi-faceted defense is required. While most web hosting companies provide robust security for your website and server, our 8-step secure web server checklist keeps you on track as you learn to keep your system under lock and key.

8 Easy Steps to a Secure Web Server

  1. SFTP – SFTP (Secure File Transfer Protocol) is the protocol used for securely uploading files to your web hosting server. Without it, your vulnerable files risk being interrupted or modified only using FTP (File Transfer Protocol). SFTP is a cushion of protection your web host should offer.
  2. SSL – SSL means Secure Sockets Layer. Providing an encrypted path between the browser and your web server, you’ll know an SSL is activated when you see a padlock icon on the address bar in conjunction with http:// sites. An SSL certificate is a must when securing sensitive information like credit card numbers.
  3. Firewall – A first line of defense, firewalls can prevent unauthorized access to your web server. Specifically, choose firewall software that recommends security processes after a system scan, along with blocking unauthorized parties. Top web application firewalls for 2016 include Applicure DotDefender and Barracuda.
  4. Antivirus Software – Network virus infections are ever-present and ever-changing. Install or recommend your web hosting service install comprehensive antivirus software like Webroot SecureAnywhere or MacAfee.
  5. Regular Password Changes – One of the easiest and cheapest ways to achieve a secure web server is to change your password often. By frequently rotating through strong passwords consisting of unique characters and letters, hackers will find it more difficult to crack into your system.
  6. Rootkit Scanner – A rootkit is a destructive program that creeps into your server unseen, usually avoiding antivirus detection. A scanner must be installed for an extra security buffer.
  7. Routine Backups – Security experts also insist that regular backups be frequently performed to protect your site. Most hosts provide a control panel backup feature to allow you to back up your own site. A combination of full and incremental backups is ideal.
  8. Server Maintenance – The best web hosts make sure your web server is sufficiently maintained to keep attacks to a minimum. One pro tip is to see if the host has a published security protocol. A published protocol is generally a strong indication that the hosting company is up-to-date with upgrades and patches.
  9. Air-tight web security is no small task and is one of the most important steps toward running a successful online business. For more questions about ensuring a secure web server, get in touch with us at Infidati today.