DDoS protection, Firewalls, Security Software, Backups, SiteLock, goMobi, web design and more. According to Kaspersky Lab, online shopping sites, blogs and forums, and gaming sites are attacked most often. Almost all attacks were via “HTTP Flood” and Mondays through Thursdays experienced the most attacks. Are you vulnerable to attack?

dedicated server security

Three important steps an online business should make:


Software Solutions

Security software for dedicated serversThese security measures are usually cheaper than the hardware alternatives but can in a few cases not be as efficient or able to provide the same protection as hardware.

A simple and low cost or even free firewall can help significantly in protecting your web site from intrusions. A firewall adds another strong barrier for any hacker to have to try and bypass to gain access to the dedicated server.

Various security software (for Linux/Unix OS’s) such as AIDE (Advanced Intrusion Detection Environment), ClamAV (virus scanner), (BFD) Brute Force Detection etc. can help secure your dedicated server hosting environment significantly and provide daily reports of any suspicious behavior to your server. Your tech support provided by your dedicated server provider should be able to interpret any warnings or points of interest or causes for concern and address them immediately. VIPRE anti-virus is a good solution for Windows OS dedicated servers. SiteLock is also a smart solution for website scanning that works on both Linux and Windows OS’s.

For DDoS attacks, software is not recommended. DDoS Hardware is still the best solution by far.

Hardware Solutions

dedicated servers with DDoS protectionDDoS attacks are best handled by hardware. After learning traffic patterns to and from the dedicated server, can the DDoS hardware detect and thwart DDoS attacks to your server. This is an unfortunate but common attack which simply floods the server with too many requests at one time and cannot handle the load.

Hardware firewalls are also able to free up server resources and block attacks more efficiently than software firewalls.

Off-server backup solutions can also have an extra line of defense if they are located off the server and protected by a strong password (that changes on an regular basis) and can at least in the event of a data breach have data retrieved. This would of course only be valid for non personal identifiable data, such as credit card info, user logins, account information etc. as once such data has been retrieved the only safe course of action is resetting those accounts and informing clients of possible stolen identity.

A lot of software can work with hardware. For example, DDoS hardware can most definitely work along side antivirus and software firewalls. However, hardware firewalls and software firewalls would not be recommended. Leave either software or hardware to do the each specific task.


Best Practices

Dedicated server security softwareIt is vital to use strong passwords that are not easy to guess involving numbers, letters and unusual characters but also making sure these passwords are changed on a regular basis. Some online credit card processors for example will force password changes to ensure password security.

Email communication should also not include confidential information as this can be intercepted.

Arrange with your bank or credit union what would be considered unusual or odd transaction behavior. Is it possible to stop transactions automatically? Will they contact you? Or will transactions simply be blocked? This can usually be the case in foreign transactions for example.

Verified by Visa. Is another added level of protection offered by Visa which involves using a password for all online payments. More information regarding Verified by Visa in this article.

According to Verizon Business reports, over 50% of data theft was tied to hacktivist groups and came from outside sources as opposed to internal employees or business partners. Attacks were mostly made towards unprepared and poorly defended sites creating an easy opportunity for successful attack. One strategy to try and prevent potential attacks is to use “badges” or “seals” provided by security firms. These “seals” state security scanning and defenses in place that can be made clearly visible on any web site. Best to have a hacker not try at all than to see if it’s possible. Firewalls can also play a vital role in this along with other security measures.  Most all security breaches increasingly involve dedicated servers and most occurred due to weak security measures that could easily have been avoided.

Malware and hacking has only increased on dedicated servers. Don’t make your small online business an easy target. Your goal is to make any attacks or data breach attempts as difficult as possible 24 hours a day, 7 days per week.Read the full article