Website operators 'must follow basic IT security steps'

2010-03-01

Internet users who run websites should ensure they follow some straightforward guidelines in order to make them as secure as possible, it has been suggested.

Paul Baccas, a senior threat analyst at encryption firm SophosLabs, explained that the security of a hosting server is more important to a site's security than its content.

In addition, he urged administrators to follow a number of "established best practices" in order to stave off the attentions of hackers, malware and other e-threats.

"Secure and hard-to-crack passwords, regular and up-to-date patching, and secure coding to prevent exploitation [are all advisable]," he said.

"Having service level agreements with your hosting provider and suppliers of third-party content that mention security and response to hacking is also a good step."

Mr Baccas also explained that it would be a mistake for internet users to believe that simple-looking websites pose fewer security risks than their more complex counterparts.

Last week, Trend Micro suggested that social networking sites are an ideal target for cybercriminals.

Read more security news.