Website security is one of the top priorities of any Webmaster. Piracy, identity theft, and viruses are  only some of the security risks website Administrators are concerned about. If you are a web Administrator, beware of a new genre of dangerous people that are now lurking around the corner, ready to hack, steal and wreak havoc to your unassuming website. These are the very people you may consider to be your friends – your very own Blog Contributors.

Blogging has taken a place at the center stage of Search Engine Optimization schemes. Blogs are now being used to help websites generate more traffic, thus increasing search engine ranking. There are many ways on how to improve your blog traffic, and one of them is through blog interactions. Notes, comments and links posted on your blogsite can help to boost your blog’s click rate and increase traffic inflow.

However, the more traffic and popularity your blog is getting, the more risk it has of being hacked. Securing your website from hackers is not an easy feat, but it can be done. Hackers come in many different forms and sizes. They can come in a suit and tie, ready to give you a firm handshake, going by the name of Blog Contributor. These friends / fiends can sneak their way into your website by inserting Javascripts and PHP to sniff through your cookies and change their access to that of an Administrator. All they have to do is paste the script “javascript:alert(document.cookie)” onto the URL, look for the user_id or PHPSESSID value and change it to 1 for Administrator, then paste “javascript:void(document.cookie user_id=1);alert(document.cookie);” and voila! They are now logged in as the Administrator after the page is refreshed. If gone unchecked, these hackers can access files and directories, and even insert unwanted data into your system, without your knowledge for long periods of time.

Although it many sound scary, there are ways on how to prevent hackers from entering your website. Listed below are 4 of them:

1. 1. Only Administrator accounts should have write permissions to your website
2. 2. Set the correct default permissions.
   All directories should be set to 755. This would allow rwx permissions for owners, and r-x permissions for groups and others. All files should be set to 644, which would allow rw- permissions for owners, and r– permissions for groups and others. Use 750 permissions for the wp-config. This means that no other user will be able to read your database username and password.
3. 3. Place your wp-config.php file one directory above the default directory, or the root directory.
   The root directory is accessible to the public, and taking the wp-config.php file, which contains pretty much all login details, passwords and access rights, out of there will lessen accessibility to your security data.
4. 4. Include a blank index.htm file in your /plugins folder.
   Plugin creators are not always perfectly coded and may contain loopholes where hackers and peek into. If the /plugins directory includes index.htm, the Web-interface displays this file rather than the directory listing. This will prevent access to the files and directories in your plugin folder.

With these security measures in mind, you can now have better security for your website from both friends and foes.

Vic Carrara
MasterWebSoftware.com

 Possibly related posts: (automatically generated)

• Related posts on blog hacking
• My Blog | Hacking MSN Hotmail Password Software FREE DOWNLOAD
• Vigorasmus | Inicio
• Machine a Sous Sans Telechargement – Jeux de casino en ligne Who …

• Related posts on blogging
• Beginners Guide to Blogging | Mini Article base
• Making Money Blogging With Your Website Post Titles – Legitimate …
• Never Ending Thoughts… | Rapid Blogging v/s Micro Blogging

• Related posts on blogs
• Do You Want to Make Money From Blogs? – Online money tips and Forex
• The search for Marizela; Plus Seattle fundraiser/benefit concert …

No related posts.