Improving the Security of your YourWeb account

Use imunify AV+ to locate and remove malicious files.

imunifyAV in the CPanel

Using imunify AV+ to locate malicious files

Redirect HTTP to HTTPS automatically

1. Install SSL

Log into your cPanel account and navigate to SSL/TLS Status in the Security section. Click the domain(s) you'd like to install a SSL on and click Run AutoSSL. AutoSSL will take a few minutes to finish. When it completes successfully the page will update with a success notification.

2. Redirect HTTP to HTTPS

Log into your cPanel.

In the Domains section, click the Domains icon.

This will open a page where you can toggle the HTTPS redirect on or off. We recommend leaving it on. If there is no option to enable HTTPS, it's because that domain does not have SSL installed

Use a secure FTP protocol (SFTP) instead of FTP to transfer files.

Regularly backup your website to protect against data loss.

  1. Head to the Files -> Backup.
  2. Under Full Backup, press Download a Full Account Backup.
  3. On the Backup Destination drop-down menu, select Home Directory.
  4. Click Generate Backup, and the backup will start automatically.

Use the correct file permission to avoid unauthorized access to your files

It is recommended to use a file permission of 644 (rw-r--r--) for files and 755 (rwxr-xr-x) for directories. This allows the owner of the files to have read and write access, while others can only have read access. This helps to prevent unauthorized access to the files, as it limits the ability to modify or delete the files to the owner only.

Keep the cPanel and all software on the server up-to-date to ensure that any security vulnerabilities are patched.

How to update your WordPress Installation.

From your CPanel enter WordPress under Applications

WordPress application in the CPanel

Enter “My Applications” 

My applications

Under listed Applications Updates are performed under View/edit Details. Before conducting an update is best to backup your application.

listed WordPress application.

It's always a good practice to regularly review and monitor your website for any security vulnerabilities, and take necessary actions as soon as possible.

Resource

Report a security issue/concern

100% helpful - 1 review

Details

Article ID: 113462
Created
Fri 1/13/23 3:13 PM
Modified
Tue 12/19/23 2:17 PM