Security


Security is no longer optional for the business of today; it's a necessity. Many providers assume that you will provide your own security; but if you're not an expert, then your business is at risk!

If you take your hands off the wheel, your car will keep driving itself. But is that really a good long-term solution?

Our network repels literally thousands of attacks every day.

If your server is penetrated by a hacker, who knows what they'll do? Sometimes they vandalize your web page. Sometimes they use your server to attack someone else's server. Sometimes they steal customer information or other sensitive data. Here's how we keep you safe.

  • Ongoing monitoring and testing for viruses, Trojans, and rootkits. We do this automatically behind the scenes, but we also work directly with you to ensure that the upgrade doesn't interrupt your work day or break your applications.
  • Free high-priority upgrades of your system software, including PostgreSQL and MySQL databases, Apache webserver, PHP, and other sensitive components. We're on every announcement list, and some of the developer lists. Most of the time, your system is upgraded the same day the announcement comes out.
  • A firewall, managed by our system administrators adjusted to your specifications. And don't worry if you don't understand firewalls; we provide maximum security... that you won't even have to worry about.
  • Vulnerability testing via Nessus, the industry standard in proactive security-risk monitoring. Server scans are performed weekly.
  • Multiple layers of attack detection and prevention. For traffic allowed through the firewall, anomaly detection systems (OSSEC) provide a potent second line of defense, detecting signs of abuse and automatically terminating connections.
  • Advanced post-intrusion detection systems. If something does get through, our file alteration monitor (Tripwire, an industry standard) will tell us, giving us clear tracks as to how the hackers are hiding their tracks and how best to lock them out. Combined with backups and our very flexible "How do YOU want to fix this?" policy, we'll get it cleaned up.
  • Password auditing. We use John The Ripper, the de facto standard in password-strength checking, to ensure that your users have chosen strong passwords.
  • Backups. The last line of defense, but a valuable one. If things really go wrong, we have backups going back two weeks.
In one experiment we performed, a default-installed Linux system was left without a firewall and with a poor choice of passwords. It was taken over by hackers at 18 hours of uptime, and was immediately used to attack other computers on the Internet.

Search Engine Optimization and SEO Tools