Solved

Is it possible to 100% stop web hacking

Posted on 2013-01-11
5
472 Views
Last Modified: 2013-01-11
We keep getting hacked and our web guy is doing everything he knows possible to stop it.  Our communications Director thinks she can fix the problem by switching to another provider.  I have no security knowledge, but from what I do know, it is not possible to 100% insure your site is hack free.

I'd like some EE opinions
0
Comment
Question by:jrsitman
5 Comments
 
LVL 13

Accepted Solution

by:
marine7275 earned 125 total points
ID: 38768436
LOL. the only 100% way not to get hacked is not be connected to the internet. I would suggest getting a security company like Fishnet involved to assist you way and how you keep getting hacked and they can help you lower your risk and manage your site more effectively.
0
 
LVL 52

Assisted Solution

by:Scott Fell, EE MVE
Scott Fell,  EE MVE earned 250 total points
ID: 38768449
You can never 100% stop.  But there are things you can do to protect yourself.  Many of the hacks have to do with common holes.  

For instance word press  or any open source cms, the bad guys already  know where to look.  There was a major issue with wordpress and plesk and plesk got a patch out right away.   Also watch for any plug ins you are using.  Those can be sources of security holes.

Make sure any cms software is up to date.  Make sure any control panel software is up to date (plesk cpanel).  Make sure if you are accepting user input you are scrubbing input.

You would need to give more info for your specific situation.   But more then likely your hack attacks are something easy.
0
 
LVL 12

Assisted Solution

by:adrian_brooks
adrian_brooks earned 125 total points
ID: 38768464
Your web guy likely needs to beef up his knowledge about web servers and security best practices.

marine7275 answered your question best with the seemingly sarcastic, albeit true statement about not being connected to the internet.

Large corporations around the world get hacked everyday and spend countless hundreds of thousands of dollars trying to keep their systems secure. There is no real way to prevent a determined hacker though. Much like locks on your doors, they're only meant to keep the "honest" people out.

My general consensus on on computer/server security has always been that if it talks in 1s & 0s, it can be hacked. Your web guy would be best served to read up on lock down procedures and security best practices.
0
 
LVL 52

Assisted Solution

by:Scott Fell, EE MVE
Scott Fell,  EE MVE earned 250 total points
ID: 38768468
When you say switch to another provider?   Your security hole is not going to change by simply moving from one host to another.
0
 

Author Closing Comment

by:jrsitman
ID: 38768514
Thanks for confirming what I thought.  Also @padas, very good point.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
Nothing in an HTTP request can be trusted, including HTTP headers and form data.  A form token is a tool that can be used to guard against request forgeries (CSRF).  This article shows an improved approach to form tokens, making it more difficult to…
The viewer will learn how to count occurrences of each item in an array.
Any person in technology especially those working for big companies should at least know about the basics of web accessibility. Believe it or not there are even laws in place that require businesses to provide such means for the disabled and aging p…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now