In this article: What is it? SRI with a Webapp SRI Code with SSH WordPress What is Subresource Integrity (SRI)? Subresource integrity (SRI) is W3C standard that protects websites against malicious modifications to JavaScript and CSS libraries hosted externally on content delivery networks (CDNs) for the fastest delivery possible. The most popular examples are Jquery Read More >
Security
Sucuri for WordPress: Blacklist Monitoring
This article explains how Sucuri for WordPress secures your website using Blacklist Monitoring. In this article, you can learn more about the following: NOTICE: Sucuri for WordPress is just one way to secure your website’s data. Check out the many features WordPress Hosting by InMotion Hosting includes supplementing security for your website. What is Sucuri Read More >
How to Modify WP Cerber Security Access Lists
In this article: Ensure IP’s Detected Correctly Edit Access List Whitelist from Activity Page Allow only specified IPs Access control lists are one of many ways to block malicious activity, protect data, and save server resources. WP Cerber’s white list allows IP’s to bypass spam check, country geofencing rules, and two-factor authentication. Cerber’s black list Read More >
How to Configure Security Notifications in Sucuri for WordPress Hosting
In this article you can learn more about: This article describes the Sucuri plugin for WordPress and how it may be used to add security to your website. It also explains the various security alerts settings. NOTICE: Sucuri for WordPress is just one way to secure your website’s data. Check out the many features WordPress Read More >
How to Add Subresource Integrity (SRI) in WordPress
In this article: What’s Subresource Integrity (SRI)? Install the Subresource Integrity (SRI) Manager Exclude Resources WordPress Security What’s Subresource Integrity? Subresource integrity (SRI) protects your website from external JavaScript libraries – e.g. Jquery.com – hosted on content delivery networks (CDNs) such as Cloudflare if they’re modified for malicious purposes. SRI adds a sha384 integrity checksum Read More >
Sucuri for WordPress Hosting: Security Activity Auditing
In this article This article describes how to leverage the Sucuri plugin for WordPress Hosting to audit security activity. It also describes the benefits of using this plugin to secure your WordPress website. NOTICE: Sucuri for WordPress is just one way to secure your website’s data. Check out the many features WordPress Hosting by InMotion Read More >
How to Install and Set Up Sucuri for WordPress Hosting
In this article: This article describes how to install and set up Sucuri for WordPress hosting. This security plugin secures your website with features like: NOTICE: Sucuri for WordPress is just one way to secure your website’s data. Check out the many features WordPress Hosting by InMotion Hosting includes supplementing security for your website. Install Read More >
AMP Security Features
The security of your hosting account begins in your Account Management Panel (AMP). And the great thing is, you can give yourself a complete security check-up by just following these steps: Update your username and password regularly Enable two-factor authentication Use account verification for support contacts Reset your root password (advanced) How to Update Username Read More >
How to Create Checksums on Your Computer
Our article covering how to create checksums for files on your server apply to everyone using Linux as their local operating system (OS) as well. But Windows and Apple OS users would have to use different steps. Furthermore, md5 and sha1 checksums are still popular because they’re fast. But they’re now very insecure due to Read More >
How to Reset Your Admin Password in CMSimple
CMSimple, not to be confused with CMS Made Simple, is a databaseless CMS (like Grav). This is a way to reduce the possibility of hacks against your domain name. But CMSimple uses HTML/CSS and an text/visual editor style familiar to WordPress users. If you install CMSimple manually or forget your password, you’ll need to edit Read More >
How to Resolve Site Health Security Issues
WordPress 5.2 release‘s new Site Health feature finds free ways to enhance website security and performance. Improving security doesn’t require extensive reading and configuration. Sometimes, it’s as simple as minimalism and removing what you don’t need. Psst! Want more speed with no complexity? Check out our Nginx-powered WordPress Hosting with our user-friendly Cache Manager. Below Read More >
Magento – Critical Security Updates
Issue: On 3/26/2019 the Magento Security team identified and released several security updates. This includes fixes for critical vulnerabilities in some versions of Magento. Who is Impacted? Websites running Magento Commerce 2.1, 2.2, 2.3 or Magento Open Source versions before 1.9.4.1. What should I Do? We are strongly encouraging all Magento Commerce and Magento Open Read More >
Block Ports in ConfigServer Security & Firewall (CSF)
There are many security practices for your private cloud hosting. VPS users looking for enhanced security can upgrade Advanced Policy Firewall (APF) to ConfigServer Security & Firewall (CSF). Below we cover how to block VPS ports using CSF. Temporary Permanent Note: You’ll need to log into WHM as root and select ConfigServer Security & Firewall. Read More >
Secure Grav from Brute-Force Attacks
Just like WebHost Manager (WHM) has cPHulk, Grav includes built-in brute force protection with the Login plugin. Below we cover how to set maximum login and password reset attempts. Note: The Login plugin is installed with Grav + Admin Plugin by default. Edit Login Security Settings Log into Grav. Select Plugins on the left. Click Read More >
How to Scan your Server with the cPanel Security Advisor
Are you looking for ways to make your server more secure? Your WHM includes a security advisor you can use to check your settings. In this guide, we will show you how to perform a cPanel Security Advisor scan from WHM. This helpful tool can check your VPS or Dedicated Hosting server for security issues Read More >
How to Set Security Questions in WHM
If you are trying to log into WHM from a new location, you may be asked security questions to verify your identity. This provides an extra layer of security and can help keep your Dedicated Hosting server secure. The security questions and answers can be setup in the WHM Security Center. Setting Security Questions Log Read More >
How to Disable Password Authorization in WHM
Do you allow users to connect to your server via SSH or SFTP? If they are using password authorization you may want to consider switching to SSH keys instead. With password authorization, users only need a username and password to connect to your server. This means hackers or bots can try combinations of popular usernames Read More >
How to Change your ModSecurity Audit Log Level
ModSecurity can help protect your website from common exploits and attacks. ModSecurity audit logs can include information about the transactions that are happening. In this tutorial, we will show you how to set your ModSecurity audit log level. This lets you choose the type of transactions that are logged, which can be helpful when troubleshooting Read More >
Reset User Passwords in CMS Made Simple
After installing CMS Made Simple manually or via Softaculous (free with our Shared Website Hosting plans), you’ll want to know how to reset user passwords without the Forgot your password? option. Below we cover how to reset user passwords in the CMS Made Simple dashboard. Your Account All Users Reset Your Password Log into CMS Read More >
Why Security is Important for Small Business Websites
Security is an important ongoing task when you create a website, with or without an e-commerce store. Cyber attacks aren’t slowing down. But you don’t want your small business slowing down as a result to this. And it doesn’t have to. There’s always news covering the consequences of businesses being hacked for personally identifiable information Read More >
