Hosting protection

Started by shanewatson11, Dec 06, 2022, 12:57 AM

Previous topic - Next topic

shanewatson11Topic starter

The hosting has been experiencing a lot of virus attacks lately, despite being a regular one. After the global clean-up, the question of how to secure the hosting and avoid wasting time on fixing it again has arisen.

It's a common issue faced by many who rely on web hosting for their work. Despite having the necessary rights and permissions, the threat of viruses and malware always looms over our heads. As such, finding ways to safeguard our hosting is crucial in ensuring smooth and uninterrupted workflow.
  •  

kosmon

To start with, can you explain what you mean by viruses exactly? Have you been a victim of a rootkit attack or perhaps someone has sneaked in a backdoor through php scripts?

In general, there are only three primary methods of unauthorized access:

a) Exploiting vulnerabilities in server software, such as the notorious heartbleed bug or bash vulnerability. When utilizing low-cost shared or VPS hosting, it's important to rely on the host to update everything. The solution to this issue would be to rent a dedicated server and update it oneself. It is worth noting that this option is relatively affordable, with normal servers starting from just 70 euros per month at hetzner.

b) Exploiting login/password security vulnerabilities, which can be prevented using authorization only via certificates.

c) The most common method of unauthorized access involves exploiting flaws in crooked scripts. Mass CMS often feature an immense amount of poor quality code, resulting in numerous holes for attackers to exploit.

It's important to remember that protection against unauthorized access requires constant vigilance and effort. Regular updates, secure passwords, and careful monitoring of scripts are all necessary steps to safeguard against malicious attacks.
  •  

Vanesill

In practical terms, detecting script vulnerabilities and systematically scanning servers for infections - and alerting administrators when something is found - can be very effective. The following are some of the recommended scanning methods:

- General engine directory scans using tools such as maldet/clamav
- Quick server scans to identify known dependencies and rootkits using rkhunter
- Scanning a specific engine using AI-Bolit
- Protecting against bot scanning, which can range from simple UA bans to use of psad settings
- Continuous analysis using Snort to prevent unwanted intrusions

It's also important to keep SMS and plugins up-to-date in order to maintain good server security.

In general, establishing good server security practices requires the collaborative effort of system administrators, programmers, and security personnel. While it can be costly, taking proactive measures such as regular scans, cleaning, and closing security holes is essential in maintaining server security.
  •  

Zora2012

If you have a dedicated IP address and server with a separate physical channel, it's possible to negotiate with your hosting provider regarding security measures. However, if you're using public infrastructure, this isn't always an option.

For mass low-cost services like Wirth.hosting or VPS, the situation is as you've described. It's important to keep in mind that hosting providers have no interest in blocking valid users from accessing clients' sites, as this would damage their reputation and customer loyalty. Therefore, each case is handled individually, with rules being adjusted and exceptions being made as necessary.

On services that allocate a significant portion of their infrastructure to individual clients, the approach may be different, with individual solutions and adaptations being made for each client's unique needs.
  •  

wisterbill

There are several steps you can take to safeguard your hosting and minimize the risk of virus attacks and malware:

1. Keep your software up to date: Regularly update your website platform, content management system (CMS), plugins, and themes to ensure you have the latest security patches and bug fixes.

2. Use strong and unique passwords: Implement strong, complex passwords for all your hosting accounts, including FTP, control panel, and database access. Avoid reusing passwords across multiple platforms.

3. Enable two-factor authentication (2FA): Activate 2FA for all your hosting accounts whenever possible. This additional layer of security requires users to provide a second form of verification, such as a unique code sent to their mobile device, in addition to their password.

4. Install a reputable security plugin or software: Choose a reliable security plugin or software that can detect and block malware, viruses, and other malicious activities. These tools often include features like firewalls, real-time scanning, and malware removal.

5. Regularly backup your data: Implement a regular backup strategy for your hosting account to ensure you have a clean and recent copy of your website files and databases. This way, if you do experience an attack, you can quickly restore your site to a previous clean version.

6. Monitor your website traffic and logs: Keep an eye on your website's traffic and server logs for any suspicious activity. Unusual spikes in traffic or unexpected log entries may indicate a potential security breach.

7. Be cautious with third-party resources: Exercise caution when using third-party resources such as plugins, themes, and scripts. Only download from reputable sources and ensure they are regularly updated and maintained.

8. Educate yourself and your team: Stay informed about the latest security practices, threats, and vulnerabilities. Educate yourself and your team members on best practices for secure hosting, such as avoiding suspicious email attachments and practicing safe browsing habits.

By implementing these measures, you can significantly reduce the risk of virus attacks and better protect your web hosting. However, it's important to remember that no system is completely foolproof, so staying vigilant and proactive in your security efforts is crucial.
  •