Tech Update Archives - HA247

 Interested in Secure Managed Hosting? Call: 01904 500 272

ha247ha247

Secure Managed Hosting

Secure

  • Intrusion Detection & Prevention
  • Managed Firewall
  • Security updates

Latest Tech
Updates

Vulnerability Scanning & False Positives

Published by Nick Fox

Vulnerability Scanning & False Positives

Many recurring issues from vulnerability scanning, in particular with websites, are false positives. For instance, these may occur when the scanner can only read the HTTP header. On Ubuntu 14.04 servers, Nginx may show 1.4.6 even when the full version may be 1.4.6-1ubuntu3.7, which contains all software fixes that have been backported.

Continue Reading

Hardening WordPress! ( In Apache )

Published by Nick Fox

Hardening WordPress! ( In Apache )

Before talking about Hardening WordPress and how to keep a WordPress website secure we must first ask “What is security?” As defined by codex.wordpress.org, and because we think this is an excellent description, “Security is not an absolute, it’s a continuous process and should be managed as such. Security is about risk reduction, not risk elimination, and risk will never be zero. It’s about employing the appropriate security controls that best help address the risks and threats as they pertain to your website.”

Continue Reading

Google Chrome moves to flag NOT SECURE websites

Published by Nick Fox

Google Chrome moves to flag NOT SECURE websites

Websites which have fields for passwords or credit card information will show this warning on the pages inviting data input if they are not served over secure connections (HTTP)!

To date, Google Chrome has not explicitly labelled HTTP connections as non-secure. But this is changing. As from this month Google Chrome is going to deliver a warning that a website is NOT SECURE if it has fields for passwords or bank / credit card details, and does NOT have the HTTPS mark. This is just the beginning. Chrome will mark ALL HTTP websites as NOT SECURE in the future.

Continue Reading

OSSEC & other intrusion detection systems

Published by Nick Fox

OSSEC & other intrusion detection systems

OSSEC & other intrusion detection systems
Host-based intrusion detection systems (HIDS) and network-based intrusion detection systems are two ways of managing security for computers and networks. While in HIDS, anti-threat software like firewalls, antivirus and spyware detection applications are installed separately on every computer in the network, in NIDS, anti-threat software is based only at specific crossroads, like servers that act as a liaison between the outside environment and the part of network that needs to be protected.

Continue Reading

Find out why our customers believe we’re the best choice for web hosting. CALL 01904 500272.

Or fill out the fields below and we will call you back.