CONSIDER SECURITY IN SHARED HOSTING ENVIRONMENTS  

Security has become a major concern for all who conduct business on the Internet. Viruses that can destroy hosting systems and hackers who steal confidential information are a bigger threat than ever before. As a consequence, consumers should take proactive steps to protect themselves, conducting in-depth research and asking specific questions of prospective Web hosts to ensure that the security measures that they employ are strong.



Security, especially in shared and virtual private server Web hosting environments, is of paramount importance because it not only protects consumers from security issues associated with the Internet, but also ensures customers who are sharing the environment cannot intrude into other customers' services.

One feature to ask about is whether a cage structure has been implemented. Under a cage structure, each client has complete privacy from all other sites. A UNIX restriction known as change root provides security by making the hosting service behave like a restricted UNIX shell machine. This effectively creates a "cage" on the hosting machine that you cannot go beyond and no other customer can enter. Under the model, no one can interfere with the core operations of the host machines or associated services.

Consumers should also ensure before they purchase any Web hosting service that no unproven binary code is permitted in the hosting environment. Any script or application that could breach security must be prohibited. Binary code is not secure and unsolicited binary code could inadvertently open up security holes putting a customer's site at risk. A good Web host will not permit unsolicited binary code to be used on a shared hosting service, if there is even the smallest risk that the code could compromise other customer's services.

A good hosting provider will also ensure that its operating system and hosting automation software deployments are hardened. A hardened configuration will ensure that all known or reported exploits, or loopholes in code that can unsuspectingly accessed by intruders, are eliminated. A competent Web host will ensure that it is protected from software exploits by applying the latest service packs and fixes, and by implementing security advisories on a daily basis.

To control security threats, a hosting firm has to constantly audit its security, and make sure specific actions are taking including: that all hardware is physical secure; that all network services that the operating system provides are secure; that the file system can prevent unauthorized access; and that safeguard passwords are enabled. Hosting firms also need to ensure that their firewall systems are configured properly.

A firewall is software or hardware designed to block hackers from accessing your hosting environment. A properly configured firewall makes it tougher for hackers to locate your system. A properly configured firewall ensures that destructive traffic cannot enter or attack your system. A firewall should also ensure that attacks are not launched from your hosting environment, in case your system is hacked or inadvertently obtains a worm or virus whose objective is to attack other systems.

Consumers will also want to take their own steps to guarantee their online security by using strong passwords to protect access to their hosting environments. Hackers may try to steal your passwords to gain access. To make it tougher for them, use passwords that have at least eight characters and include numbers or symbols. Avoid common words: Some hackers use programs that can try every word in the dictionary. Don't use your personal information, your login name or adjacent keys on the keyboard as passwords.

Also, make sure that you use anti-virus software and update it regularly. Often, UNIX hosting environments are immune from Windows-based viruses, but can transmit them to other Windows systems just the same. As a result, enhanced protection is needed at the customer end to ensure that the Web sites being built are not "diseased."