Improving the Security of your YourWeb account

Summary

This article will show you how to apply essential website security practices to your YourWeb website.

Body

Quick Links: | Use ImunifyAV+ | Redirect HTTP to HTTPS | Use Secure FTP (SFTP) | Back Up Your Website | Set Correct File Permissions | Keep Software Up-To-Date |

Use ImunifyAV+

To scan your website for malware:

  1. Log into your cPanel account.
  2. Go to the Security section and click ImunifyAV+.
    imunifyAV in the CPanel
     
  3. Click Start scanning to begin the malware scan.
  4. Once complete, review the results and click Remove All or select files manually.

Learn more about ImunifyAV+

Redirect HTTP to HTTPS Automatically

Install SSL

  1. Log into your cPanel and navigate to SSL/TLS Status under the Security section.
  2. Select your domain(s) and click Run AutoSSL.
  3. AutoSSL will take a few minutes to complete. Once successful, a notification will appear on the page.

Redirect HTTP to HTTPS

  1. In cPanel, go to the Domains section and click the Domains icon.
  2. Use the toggle in the HTTPS Redirect column to enable redirection for your domain.

If you don’t see this option, SSL may not yet be installed on the domain.

Use a Secure FTP Protocol (SFTP) Instead of FTP

Always use SFTP (Secure File Transfer Protocol) rather than traditional FTP to protect your login credentials and file transfers.

SFTP encrypts data during transit and helps prevent unauthorized access or interception.

Regularly Back Up Your Website

  1. Log into your cPanel and go to Files > Backup.
  2. Under Full Backup, click Download a Full Account Backup.
  3. Select Home Directory as the backup destination.
  4. Click Generate Backup. The process will begin automatically.

Use the Correct File Permissions to Avoid Unauthorized Access

Set file permissions appropriately to control access:

  • Files: 644 (rw-r--r--)
  • Directories: 755 (rwxr-xr-x)

This ensures the file owner can read/write, while others can only read, reducing the risk of unauthorized modification or deletion.

Keep the cPanel and All Software on the Server Up-To-Date

 Always back up your application before performing updates to prevent data loss.
 
It is a good practice to regularly review your website for security vulnerabilities and take any necessary actions.

How to Update Your WordPress Installation

  1. From your cPanel, go to Applications > WordPress.
    WordPress application in the CPanel
     
  2. Click My Applications.
    My applications
     
  3. Under the listed application, click View/Edit Details to perform available updates. 
    Listed WordPress application

 Still need help? Contact Web Services for further assistance. If you believe there is a security concern, please submit a ticket.
  
 Help us improve our Knowledge Base! Click Yes or No below, then let us know what worked — or what didn’t. Your feedback helps us improve our content and provide the best possible support. 

Details

Details

Article ID: 113462
Created
Fri 1/13/23 6:13 PM
Modified
Thu 4/17/25 1:36 PM