When building our webhosting servers, we strive to ensure that our customers will have the best experience when utilizing our services. When purchasing standard webhosting you are probably unaware of all the components that go into making sure that our server is ready to perform. There are three major layers that we protect our servers against which include: external, internal, and outbound. The external environment includes all the of traffic from the Internet, which poses a unique challenge to us. However, there are several applications that we use in order to strengthen our servers which include: clamav, Firewalld, brute force, and ModSecurity. In order to protect the server’s internal environment we use applications such as: CageFS, Kpatch, and ClamAV scanning. Which is used to uphold the integrity of these servers while also monitoring outbound traffic through monitoring applications such as SpamAssassin, clamav, and mailchannels.
A web server may experience a wide range of attacks from various sources. A major Apache module to help protect our servers is ModSecurity. It works simply by blocking common code injection attacks. It’s flexible ability allows administrators to implement a react and response policy. Also, administrators are able to analyze behaviors which helps them detect exploits before they occur.
Discussed in our previous article, this anti-virus application was originally developed for Unix. This free open source software allows us to scan any incoming email and web traffic. It’s database is constantly being updated, with its users updating it every four hours. Clamav is not only used to detect malware coming from the Internet, but it is also used to monitor email or web traffic that resides in or that is sent out from our servers
Firewalld allows for us to actively manage our firewall on our web hosting servers. With this application, we are able to deploy persistent network traffic rules. In simpler terms, it ensures that unwanted visitors are kept out.
This is an essential feature that many firewalls come with. LFDs search for brute force attacks against the server. Once an IP address has been identified the LFD will block it from making any further connections. This is extremely crucial since brute force attacks are unrelenting.
As you might know, a web hosting server has many users sharing the server’s resources. To help better understand how a shared web hosting server works, imagine an apartment filled with tenants. In an apartment the tenants are renting and sharing the facilities resources. With CageFS, users are prevented from seeing each other. This stops them from viewing sensitive information, information disclosure attacks, and viewing configuration files. The only thing users will have access to is safe files and their individual account.
kPatch was created to ensure maximum system uptime and availability. From time to time, patches need to be implemented. Usually when patches are made, the server must restart and go down for a bit. With the implementation of live patching, the downtime of a server is reduced. This powerful application allows system administrators to apply important security patches without fear of disturbing users.
This open-source application allows for system administrators to filter email and block spam.It’s API is highly integrable into an email stream which makes it easy to setup. Spammers will find themselves having a difficult time when trying to find new methods to spam, because this advanced system is quick at determining the criteria for spam.
In order to stick to our guaranteed email delivery promise, we use this application to ensure that our customers aren’t sending spam. Mailchannels is a tool that provides outbound email filtering and is a perfect delivery solution for web hosting companies. It is a highly trusted member of the messaging, malware, mobile anti-abuse, and anti-phishing working group. The way it recognizes spam is by looking for spammers within the network to improve email reputation. By doing this, it ensures other users will have reliable email delivery. Certain spam signatures are tested against a database of known spam signatures which is constantly being updated. Spammers face harsh consequences because they will instantly be shut down.
The quality of our web hosting server is of the utmost importance to us. We utilize a vast array of tools to make sure that your experience with us is the best. We offer our standard web hosting plan at $5 per month with no contracts. How much better does it get than that? You are easily able to manage your websites through cPanel which is included for free. We manage every aspect of the server, in order to allow for your primary focus to be running your website.