What is Subresource Integrity (SRI)?

In this article: What is it? SRI with a Webapp SRI Code with SSH WordPress What is Subresource Integrity (SRI)? Subresource integrity (SRI) is W3C standard that protects websites against malicious modifications to JavaScript and CSS libraries hosted externally on content delivery networks (CDNs) for the fastest delivery possible. The most popular examples are Jquery Read More >

Sucuri for WordPress: Blacklist Monitoring

This article explains how Sucuri for WordPress secures your website using Blacklist Monitoring. In this article, you can learn more about the following: NOTICE: Sucuri for WordPress is just one way to secure your website’s data. Check out the many features WordPress Hosting by InMotion Hosting includes supplementing security for your website. What is Sucuri Read More >

How to Modify WP Cerber Security Access Lists

In this article: Ensure IP’s Detected Correctly Edit Access List Whitelist from Activity Page Allow only specified IPs Access control lists are one of many ways to block malicious activity, protect data, and save server resources. WP Cerber’s white list allows IP’s to bypass spam check, country geofencing rules, and two-factor authentication. Cerber’s black list Read More >

How to Add Subresource Integrity (SRI) in WordPress

In this article: What’s Subresource Integrity (SRI)? Install the Subresource Integrity (SRI) Manager Exclude Resources WordPress Security What’s Subresource Integrity? Subresource integrity (SRI) protects your website from external JavaScript libraries – e.g. Jquery.com – hosted on content delivery networks (CDNs) such as Cloudflare if they’re modified for malicious purposes. SRI adds a sha384 integrity checksum Read More >

How to Install and Set Up Sucuri for WordPress Hosting

In this article:  This article describes how to install and set up Sucuri for WordPress hosting. This security plugin secures your website with features like: NOTICE: Sucuri for WordPress is just one way to secure your website’s data. Check out the many features WordPress Hosting by InMotion Hosting includes supplementing security for your website. Install Read More >

AMP Security Features

The security of your hosting account begins in your Account Management Panel (AMP). And the great thing is, you can give yourself a complete security check-up by just following these steps: Update your username and password regularly Enable two-factor authentication Use account verification for support contacts Reset your root password (advanced) How to Update Username Read More >

How to Create Checksums on Your Computer

Our article covering how to create checksums for files on your server apply to everyone using Linux as their local operating system (OS) as well. But Windows and Apple OS users would have to use different steps. Furthermore, md5 and sha1 checksums are still popular because they’re fast. But they’re now very insecure due to Read More >

How to Reset Your Admin Password in CMSimple

CMSimple, not to be confused with CMS Made Simple, is a databaseless CMS (like Grav). This is a way to reduce the possibility of hacks against your domain name. But CMSimple uses HTML/CSS and an text/visual editor style familiar to WordPress users. If you install CMSimple manually or forget your password, you’ll need to edit Read More >

How to Resolve Site Health Security Issues

WordPress 5.2 release‘s new Site Health feature finds free ways to enhance website security and performance. Improving security doesn’t require extensive reading and configuration. Sometimes, it’s as simple as minimalism and removing what you don’t need. Psst! Want more speed with no complexity? Check out our Nginx-powered WordPress Hosting with our user-friendly Cache Manager. Below Read More >

Magento – Critical Security Updates

Issue: On 3/26/2019 the Magento Security team identified and released several security updates. This includes fixes for critical vulnerabilities in some versions of Magento. Who is Impacted? Websites running Magento Commerce 2.1, 2.2, 2.3 or Magento Open Source versions before 1.9.4.1. What should I Do? We are strongly encouraging all Magento Commerce and Magento Open Read More >

Block Ports in ConfigServer Security & Firewall (CSF)

There are many security practices for your private cloud hosting. VPS users looking for enhanced security can upgrade Advanced Policy Firewall (APF) to ConfigServer Security & Firewall (CSF). Below we cover how to block VPS ports using CSF. Temporary Permanent Note: You’ll need to log into WHM as root and select ConfigServer Security & Firewall. Read More >

Secure Grav from Brute-Force Attacks

Just like WebHost Manager (WHM) has cPHulk, Grav includes built-in brute force protection with the Login plugin. Below we cover how to set maximum login and password reset attempts. Note: The Login plugin is installed with Grav + Admin Plugin by default. Edit Login Security Settings Log into Grav. Select Plugins on the left. Click Read More >

How to Set Security Questions in WHM

If you are trying to log into WHM from a new location, you may be asked security questions to verify your identity. This provides an extra layer of security and can help keep your Dedicated Hosting server secure. The security questions and answers can be setup in the WHM Security Center. Setting Security Questions Log Read More >

How to Disable Password Authorization in WHM

Do you allow users to connect to your server via SSH or SFTP? If they are using password authorization you may want to consider switching to SSH keys instead. With password authorization, users only need a username and password to connect to your server. This means hackers or bots can try combinations of popular usernames Read More >

How to Change your ModSecurity Audit Log Level

ModSecurity can help protect your website from common exploits and attacks. ModSecurity audit logs can include information about the transactions that are happening. In this tutorial, we will show you how to set your ModSecurity audit log level. This lets you choose the type of transactions that are logged, which can be helpful when troubleshooting Read More >

Reset User Passwords in CMS Made Simple

After installing CMS Made Simple manually or via Softaculous (free with our Shared Website Hosting plans), you’ll want to know how to reset user passwords without the Forgot your password? option. Below we cover how to reset user passwords in the CMS Made Simple dashboard. Your Account All Users Reset Your Password Log into CMS Read More >

Why Security is Important for Small Business Websites

Security is an important ongoing task when you create a website, with or without an e-commerce store. Cyber attacks aren’t slowing down. But you don’t want your small business slowing down as a result to this. And it doesn’t have to. There’s always news covering the consequences of businesses being hacked for personally identifiable information Read More >