The best five ways of keeping your website secure lies in understanding firstly how your web site works, and how its set-up, and secondly what defensive mechanisms there are in place to thwart and stop attacks.
First line of defence – the ‘first line of defence’ principle is what’s most important when considering that this is the first thing that a potential adversary will hit when attempt access to your system.
Security audit – while it goes without saying it’s too often surprising how lax some people take their IT security by failing to audit their systems.
Common concerns – the most common concerns should be taken seriously when considering web site protection – so ‘how strong is my password’, right through to what are the web site controls we have in place to stop people from gaining unauthorised access? These, and many other ‘common concerns’ should be thought about when it comes to effective web site security.
- Malware infection
- SQL injection
- Brute force
- Cross-site scripting
- The ‘zero day’ hack.
Appropriate protection – the fundamental basics of ‘secure passwords, changing directory and folder permissions, and anti brute force mechanisms’.
Weaknesses by design – a lot of websites operate on the principle that certain features are active, but many of those features come with inherent added security risks.
- Social media login
- Unregulated content