Website security.

Gravitas

A friend of mine has had her website compromised
and someone deleted a page from her site.

Any suggestions in regards to increasing
web site security would be most appreciated.

Thank you in advance.

NeonSilicon

Keep it static if you can. Every sort of server side application framework is under constant attack. Dynamically generated content means you have to keep whatever stack you are using up to date at all times.

Host it on BSD and if you can't do that use Linux.

Keep the content management off of the HTTP side of things and then keep whatever method you do use to upload to the site secure. Use something like SFTP and SSH.

The constant barrage of attacks is insane. I have more attacks probing my site than I do search engine web crawlers.

If you do have to have dynamically generated content, it gets harder and you have to watch it all the time.

Gravitas

@NeonSilicon said:
Keep it static if you can. Every sort of server side application framework is under constant attack. Dynamically generated content means you have to keep whatever stack you are using up to date at all times.

Host it on BSD and if you can't do that use Linux.

Keep the content management off of the HTTP side of things and then keep whatever method you do use to upload to the site secure. Use something like SFTP and SSH.

The constant barrage of attacks is insane. I have more attacks probing my site than I do search engine web crawlers.

If you do have to have dynamically generated content, it gets harder and you have to watch it all the time.

The concern is that specifically one page was deleted.
Yes, the content is dynamically generated and traffic is increasing.

Okay, thanks for the advice.

wim

@Gravitas - details needed. A question like that is like asking a doctor, "My friend has a pain, can you help her?"

Web sites have an infinite number of ways they can be hosted, generated, maintained, and secured. The attack vectors and how to close them depend on all of those.

From your description it isn't clear whether it is even an attack. There are a lot of ways pages can go missing from a web site that have nothing to do with hackers. Unless it was something controversial that someone just wanted to purge, it's unlikely anyone would compromise a site and just remove one page. Were there other indications of a hack? If not then it sounds more likely to me there's something else going on.

Hackers don't often bother themselves with a minor alteration like that. They usually hack sites to steal information or to insert code to redirect people to malicious sites, or to post porn or something like that to get back at someone they disagree with.

With more background of the web site environment and the nature of the changes I might be able to hazard some guesses at how to discover what happened. But as-is, there's nothing to go on. My only advice is If she has a hosting provider that has technical support available, the best place to start is there.

Gravitas

@wim

Sending you a PM.

wim

@Gravitas said:
The concern is that specifically one page was deleted.
Yes, the content is dynamically generated and traffic is increasing.

There may be logs that would supply clues depending on the content management system.
Was the page something controversial that someone would have motivation to remove? It's unusual that someone would compromise just one page of a site in this way.

wim

@Gravitas said:
@wim

Sending you a PM.

Good idea. I was going to suggest that.

OnfraySin

Stolen credentials 99%

Nothing related to web security

espiegel123

@Gravitas said:
A friend of mine has had her website compromised
and someone deleted a page from her site.

Any suggestions in regards to increasing
web site security would be most appreciated.

Thank you in advance.

Without knowing what platform your friend used or how it was set up, it is impossible to really give good advice. There are great platforms that are not prone to hacking where people get hacked because they didn't know how to set up the security.

Was this person hosting the site themselves?

If using something like wordrpress, did they host it themselves or through wordpress (or use squarespace or its ilk).

Gravitas

@espiegel123 said:

@Gravitas said:
A friend of mine has had her website compromised
and someone deleted a page from her site.

Any suggestions in regards to increasing
web site security would be most appreciated.

Thank you in advance.

Without knowing what platform your friend used or how it was set up, it is impossible to really give good advice. There are great platforms that are not prone to hacking where people get hacked because they didn't know how to set up the security.

Was this person hosting the site themselves?

If using something like wordrpress, did they host it themselves or through wordpress (or use squarespace or its ilk).

I do not know that information as yet.

espiegel123

@Gravitas said:

@espiegel123 said:

@Gravitas said:
A friend of mine has had her website compromised
and someone deleted a page from her site.

Any suggestions in regards to increasing
web site security would be most appreciated.

Thank you in advance.

Without knowing what platform your friend used or how it was set up, it is impossible to really give good advice. There are great platforms that are not prone to hacking where people get hacked because they didn't know how to set up the security.

Was this person hosting the site themselves?

If using something like wordrpress, did they host it themselves or through wordpress (or use squarespace or its ilk).

I do not know that information as yet.

WIthout knowing it, one can't really advise. I will say that a lot of hacked sites are the result of people hosting their own sites (including on shared servers) without keeping current with security updates or not having known how to set up the security features. One of the advantages of using something like squarespace or worpress as a host (as opposed to hosting wordpress on your own or a shared server) is that the host will shoulder most of the security -- and and they have a vested interest in staying up to date. Hackers have gotten radically more aggressive and smarter over the last four or five years and it is harder for amateurs to stay on top of security best practices.

Gravitas

@espiegel123 said:

@Gravitas said:

@espiegel123 said:

@Gravitas said:
A friend of mine has had her website compromised
and someone deleted a page from her site.

Any suggestions in regards to increasing
web site security would be most appreciated.

Thank you in advance.

Without knowing what platform your friend used or how it was set up, it is impossible to really give good advice. There are great platforms that are not prone to hacking where people get hacked because they didn't know how to set up the security.

Was this person hosting the site themselves?

If using something like wordrpress, did they host it themselves or through wordpress (or use squarespace or its ilk).

I do not know that information as yet.

WIthout knowing it, one can't really advise. I will say that a lot of hacked sites are the result of people hosting their own sites (including on shared servers) without keeping current with security updates or not having known how to set up the security features. One of the advantages of using something like squarespace or worpress as a host (as opposed to hosting wordpress on your own or a shared server) is that the host will shoulder most of the security -- and and they have a vested interest in staying up to date. Hackers have gotten radically more aggressive and smarter over the last four or five years and it is harder for amateurs to stay on top of security best practices.

I’ve received some very good advice and we’re figuring out the best possible solution.

Thank you.