I've noticed a lot of people complaining about their budget hosts and security. Often a ***** will break into the server of a company with poor security and then start injecting code and attacking websites on the server. Stuff like this can get you banned from Google search or worse.
One thing i've really noticed is that hosts will not accept responsibility for this. They often blame the user. This is big problem in the industry and I would like to hear your thoughts on it.
This is a major issue for me as well. Recently, I have heard that a ***** was successful in breaching the security system of a web host and defaced many of the web sites.
Some budget web hosts offer cheap plans with the minimal amount of security, which indeed leads to system vulnerability. Most of the times hacking attempts for such hosts are successful because of the poor security measures.
It is host's responsibility to keep data and information safe. In my view, they cannot simply blame users.
However, a user must always choose the right web host for hosting their website.
Web hosting providers are responsible for their servers security , but most of the new smaller companies are really neglecting the security aspect .
Recently I`d noticed companies using free software firewalls with no limitation to ssh access . Sometimes the reason is low budget , but most of the problems are due to lack of experience and knowledge . This is the reason why we should research in depth our future web host providers and in my opinion the good price is never enough . All of the new companies are relying entirely on offering incredibly good prices , but there is always a catch .
Getting hacked is really a pain. What's worse is when it happens, providers can never really take the fall for it. So the best thing to do is be very vigilant and take an active role in protecting your website. There are several tips on how you can do this but I would like to emphasize on one: ALWAYS CHANGE PASSWORDS. And, make it a point to tell everyone working on your website to never autosave passwords. It can be irksome but it's better than potentially getting your website banned or shut down because of a ***** breaking in.
This is a major concern for companies with web hosts site that are not reliable. Even if the provider offers cheap web hosting they should also ensure that privacy and security is kept. It is really a big detriment to the cyber world and there should be contingency measures that the web host should be taking so as not to be hacked for them to keep their clients and integrity.
In my opinion, this is the Host's fault if ever their server was hacked and your website got banned by Yahoo! and Google due to scripts injected by the *****, eventually could destroy your business.
No matter how cheap or lowly your hosting plan is, the Host should take security as a high priority, since this could also taint their name as a Web Host Provider.
(02-17-2012 10:23 PM)Apaullo Wrote: [ -> ]In my opinion, this is the Host's fault if ever their server was hacked and your website got banned by Yahoo! and Google due to scripts injected by the *****, eventually could destroy your business.
No matter how cheap or lowly your hosting plan is, the Host should take security as a high priority, since this could also taint their name as a Web Host Provider.
As a rule users get hacked because of unsecured passwords (FTP, Cpanel etc.), Use of third party scripts can cause *****. Who know what code was inserted to that script. Free plugins, themes, modules they may contain hidden ***** scripts/traps. And of course users PC without antivirus software.
You are not following the thread`s subject, myidealhost. Check the first post. We are talking about a situation, where the entire server is hacked and accessed. Clearly, the web-hosting provider is responsible for his server security.
Indeed, it is not only the client's website who was hacked but the entire Web Hosting server, causing all clients in that specific server to crash and cause downtime. And when the clients complain about it, usually the Web Host provider points the blame to them.
Unfortunately, it is not possible to access any of our customers account unless they know the account username and password. It seems that somebody who knows the account username and password has accessed your account and uploaded the files.
If you are using any old scripts in your site, that might allow the remote attackers to exploit the program and alter the contents of specific file. Please make sure that you’re using the latest version of the scripts which are updated against any known vulnerabilities.
As far as the security is concerned, there are two types of hacks. One is network ***** and another is script *****. We ensure that our network is not susceptible to any kind of attack way our architecture and security policies are setup. But we can not guarantee any unauthorized access made to your site due to your programs.
You will need to change the account password. You should not create passwords using any combination of consecutive numbers or letters such as ‘12345678’, ‘lmnopqrs’, or adjacent letters on your keyboard such as ‘qwerty’. Using your login name, your spouse's name, or your birthday as your password is big security threat, too. You should also never use a word that can be found in the dictionary, in any language
This is because, Hackers use sophisticated tools that can rapidly guess passwords based on words in the dictionary in different languages, even common words spelled backwards. A strong password is one that is at least eight characters, includes a combination of letters, numbers, and symbols and is easy for you to remember, but difficult for others to guess. Remember, a strong password is one you change every few months. Just as you make a date with your computer to run updates, backup software, and clean out old programs, you should also regularly change passwords.
Also, If you have any old scripts in the Web site, then please try to use secure and updated scripts.
Sandra Lewis