Quick, Easy & Essential Cyber Security Tips
These quick tips help improve your Website's Security even when it might still be vulnerable by making it harder for hackers to identify the weaknesses
.
This is important!
Make it harder for scanners/ hackers to identify vulnerabilities/ exploit you - Even when your system is vulnerable!
Use generic error pages - For instance, silently redirect 404, 403 errors to your home page
Disable ALL error reporting on your system
Directory Listing enables an attacker access to restricted data: E.g backup, conf files forgotten in the web-root
In your .htaccess file, add this line: Options -Indexes
Else, having an index.html page in the directory prevents listing as well
E.g To help prevent SSH login bruteforce attacks
Disable SSH root login
Limit failed SSH authentication attempts. E.g to 3
Use a different SSH port other than 22
Disable FTP; it's authentication is in clear-text (Use SFTP above)
Disable Telnet
Whitelist allowed ports: Typically: HTTP/S, SMTP, SSH
E.g SQLi, XSS, Command
Never trust any client generated input - Always sanitize it
Worried about website downtime and data breaches? Let us secure your website and provide you with peace of mind.