1. Home
  2. Technical Advice
  3. Tips for Securing your Web Hosting

Tips for Securing your Web Hosting

Introduction

As you may have noticed, hackers are making headlines.

Did you know that getting hacked is a real risk? Many people wonder why someone would be interested in hacking into a simple hosting service? Here are some reasons:

  • Use of your hosting to send spam.
  • Using your hosting as a virus distribution tool.
  • Just for the fun of it.
  • To create phishing pages.
  • Using your hosting to attack other sites (DDoS attacks).

Recommendations to Reduce the Risk of Piracy

Although our servers are state of the art in terms of security, this is not an insurance against hacking. You must ensure that certain conditions are met in order to maximize security.

Here is what we recommend to our clients:

  • Use up-to-date CMS, modules, plugins and themes from reliable sources.
  • Regularly update all CMS on your hosting as well as modules and extensions.
  • Regularly check your FTP for malicious code (pay attention to modification dates).
  • Frequently change cPanel/MySQL/email passwords to an 18 character password (including special characters).
  • Be careful how you store your passwords. It is a good idea not to keep passwords in your email.
  • Be careful who you give your passwords to.
  • Run the anti-virus (virus scanner) from cPanel monthly on your entire hosting and remove contaminated files.
  • Activate the SpamAssassin in your cPanel to limit the number of unwanted emails as soon as they arrive.
  • For people who have a HybridCloud or reseller account, do not put multiple sites in companion domains on one hosting. Instead, opt for multiple cPanel accounts.
  • When connecting to your cPanel account, use port 2083 (yourdomainname.ext/cpanel) instead of port 2082.
  • When connecting to your WHM, use port 2087 (yourdomain.ext/whm), rather than port 2086.
  • Make your CMS admin consoles as secure as possible by installing security modules, e.g. CAPTCHA or brute force protection, or protect its access with an .htaccess file.
  • Never use an easy to find username for your admin consoles like Admin, root, or your name.

Note : Please note that if PlanetHoster attempts to contact you by email to ask for your password, it is your responsibility to ensure that it is a member of the PlanetHoster team. You can ensure this by contacting us directly https://www.planethoster.com/fr/Contact.
Under no circumstances will PlanetHoster contact you to ask for your password via LiveChat or the phone.

Updated on 7 March 2022

Was this article helpful?

Related Articles