Tips To Protect Your Websites by
Heris Y
One of the most frustating problems for a webmaster is when someone ruins her
website. Very often webmasters got their websites completely disappeared. In
order to prevent it happens to you, it would be better if you make some
preparations. This article contains several tips to protect your websites.
Here they are:
- The name of your files and folders
Consider to use names which are hard to guess. It is particularly useful if you
have private files and folders. The configuration files of some scripts such as
Mambo/Joomla should also be renamed in order to prevent a website that uses the
scripts from being ruined. Usually you also need to modify some other files
after renaming a configuration file to keep the script runs properly.
- Password Management
Change your password regularly. Use password that hard to guess by others. After
installing a script, change the default password (and username) immediately. It
is also highly recommended not to store any passwords in your PC.
- Keep important files in safe places
Keep important files In a protected folder. If your hosting service provides
this feature, use it. If not, you can try to do it through .htaccess and .htpasswd
files. If possible, keep important files in a place that can't be accesed
through web browser. Store them below the root directory of your hosting
account.
- Remove unneeded files and folders
Some files need to be removed after script installation. If a script suggests
you to remove the installation files/folder after being installed, you should
follow the suggestion as soon as possible.
- Disable your directory listing
You can disable the listing of a directory by storing an opening file (e.g.
index.html, index.php) in the directory so that ones can't see the files inside.
Another option is by using your .htaccess file. Just put "Options -Indexes"
command in the file and store it in the directory you want to protect.
- Updating your scripts
Make sure you have installed the latest version of a script. The creator must
have fixed some dangerous bugs.
- Error Reporting
If you use php, don't forget to use error_reporting() function to hide any
encountered errors. This way any error and warning will not be displayed to your
site visitors.
- Form Handling
In order to prevent someone filling your form with destructive code, always
validate any input. Make sure your visitors only be able to input data in
correct format.
Although you have already protected your website, don't forget to always backup
both your webpages and databases regularly so that you will be able to store
them again anytime you want in case something happens. Keep in mind that there
is no guarantee that your website will be always completely safe, but by
following the tips above you can eliminate some possibilites.
About the Author:
Heris Yunora is the owner of
UnlimitedHostingPlan.com, a website that contains a comparation between two
popular
unlimited web hosting services.
Source of this article:
www.goarticles.com
| |
|