Is Your Website Secure On A Shared Server? Part 2

SSL certificates The secured socket layer (SSL) technology provides strong encryption of HTTP packets during their transfer through the World Wide Web. However, in order to encrypt; a SSL certificate from a trusted certification authority like Verisign or Twate is necessary.

Shared hosting and SSL certificates SSL can undoubtedly provide a lot of security on the server side. Most of the encryption done is on the 128 bit level, which in its own right is very secure. But, when it comes to securing websites on shared hosts the real problems surface as the SSL technology requires an IP address ( with port number) and most shared websites don?t have one!

To overcome this problem many ISP?s have come-up with shared SSL certificates. But, this quick fix solution actually undermines the importance of SSL certificates as, with a shares SSL certificate the credibility and trustworthiness of a certificate comes under the scanner.

However new methods are being developed at a rapid pace whereby Genuine SSL certificates would be provided to websites operating on shared hosts and with the evolution of IPv6 (The new generation of Internet Protocol) the scarcity of public IP?s would also be addressed to a certain extent).

Other practical methods to ensure security on shared servers

• You should have complete information about the types of scripts and software installed on the server. As applying unproven or substandard codes by others using the server might affect you too.
• Enquire about the security audit procedure employed by your host. That?s because the frequency of review can be the deciding factor between succumbing to a security threat and overcoming it.
• The most important action you can take on your part is to use very strong password for your website. As using easy to crack password would make your website as open as a stadium in front of hackers.

When we talk of the World Wide Web and its secure nature, we have to understand that nothing is fool-proof. Recent times have seen hackers breaking in to some of the most secure websites. That?s why, the trick here lies in keeping up with the times and heeding to the latest of security updates. A web hosting provider who does that can provide a great deal of security to your website even if it?s hosted on a shared server.

The Author Search Engine marketing expert, Tarun Gupta is one of the most prolific writers in the internet marketing domain with his articles being published in numerous search related websites and newsletters.

He is the founder director of web development and web hosting services company BrainPulse.com.

Monitor the Uptime of Your Websites and Servers

Websites are nowadays used to do business and earn profit. If you belong to those who own such a website or just planning to start on-line business, you will have to monitor the uptime of your websites or servers. Do not let your clients to let you know about your downtime.

There are companies, which websites are essential for their business success, as they are generating the most or the whole of the company's revenue. Maybe also you belong to them. When this kind of website (server) is down, your business is affected. If your website is hosted by another company, you probably have some sort of "uptime" guarantee. Nevertheless, what exactly is uptime and how do you measure it. The basic definition of uptime is the period of time when your site is up and running, being accessible and able to satisfy customers.

The opposite, when your site is not accessible, it is down. And that is how you measure downtime. Faulty routers, malfunctioning LANs, or a loss of electrical power typically causes most of the downtimes; only rarely are caused by a natural disaster. Most often, it is caused by failures from the telecommunications company or an application failure, not a fire, flood or other catastrophe.

The cost of downtime calculation of course depends on many factors, like the products and services you provide, the size of your company, the number of online sales, etc. Even if you do not sell any products or services online, there is still a cost of downtime, but then in terms of damage of reputation etc. Calculate the cost of downtime is difficult and varies from one company to another. There is no "average business", so the statistics that quantify the cost of downtime for average businesses are not helpful.

The cost of downtime include direct costs such as the labor charges for a team of technologists who had to resolve the outages. The indirect costs are much more difficult to calculate and include potential lost revenue, reductions in worker productivity, damaged reputation with customers and in the marketplace, lost future sales and the cost of storing unsold goods. Financial analysts and accountants at your company can help you come up with the factors for your particular business.

If your website is generating profit for your business, you will for sure monitor it by an external monitoring service. The on-line market offers you to choose from different services to get uptime reports, statistics and get notifications as soon as your website is down. You can not let your customers to inform you about your own downtime.

To understand the importance of being aware of downtime, and to be alerted as soon as possible when a problem occurs, have a look at these numbers:
- According to a report by Cumulus Research Partners website downtime, caused by problems such as network failures, costs European businesses more than ? 5 billion a year.
- In the automotive industry downtime is often worth some $1.000 a minute.
- According to a recent study conducted by ARC Advisory Group, accounting for nearly five percent of total North American production, more than $20 billion is lost each year due to unscheduled downtime. Clearly, the traditional "fail and fix" approach to maintenance is no longer a viable MRO strategy.

Many hosting providers guarantee 99 % uptime. 99 % uptime sounds good, but means that your site could be down more than 3.5 days a year, and in today's Internet that is unacceptable. Comparing to that, 99.9 % uptime is much better, but with 8 hours and 45 minutes of possible downtime do not have to be always enough. The table below shows the percentage of uptime and the related downtime per year.

99 % ........ 87 hours, 36 minutes (more than 3.5 days)
99.9 % ...... 8 hours, 45 minutes, 36 seconds
99.99 % ..... 52 minutes, 33.6 seconds
99.999 % .... 5 minutes, 15.36 seconds
99.9999 % ... 31.68 seconds

As you can see, a 99 % uptime may not sound too bad, but it can cost you quite a lot of loss in revenues.

There are more than 30 uptime monitoring websites worldwide, while some of those have also affiliate partners. Among those are: Alertra, AlertSite, Dotcom monitor, InternetSeer, Jaguard, RedAlert, SiteUptime, WatchMouse, WebsitePulse and others. Almost all of them offer some prepaid packages based on monthly fees, varying by number of possible monitored sites (servers), additional services and by the complexity of the service. The price of their basic prepaid package is $5 - $40 per month. For this price you can monitor only 1, or maximum of 3 devices, choose from quite a lot of protocols, allow to send notifications to multiple contacts via e-mail, IM, pager or SMS, allow to choose between daily, weekly, or monthly reports by email and of course uptime performance and statistics available on-line. The Professional packages can go up to $180 per month or even higher.

There are just two completely free 24/7 monitoring services: Montastic and mon.itor.us.

Montastic's (http://www.montastic.com) biggest advantage is simplicity of the service, while it offers just basic service including real time monitoring and alerting by e-mail one contact person - the registred user, or by RSS feed, when the website is down and when it is back again. It allows to monitor only http websites, limited to the number of 100 (what is not a limit at all), checking it every 10 minutes from two different locations.

Meanwhile mon.itor.us (http://mon.itor.us) provides network, website and server monitoring service supporting 11 protocols with possibility to monitor unlimited number of devices and alert unlimited number of contact persons by e-mail, RSS feed, IM message, pager or SMS. There are also other remarkable features as personalized interactive interface, where you can add server performance and availability tests, set daily, weekly or monthly reports sent by e-mail. Tests are performed from 3 geographically distributed servers, and they are always adding more interesting features as they are still in beta version.

Peter Cernak works at Sourcio (http://www.sourcio.com). The company develops mon.itor.us and offers a wide range of IT services and Open Source solutions for small and medium-size businesses

Website Updates are a SNAP With Server Side Includes

If you ever had to make a change to your website that needed to be carried onto every page, you know what a tedious job it is.Well, have I got news for you. It doesn't have to be. Welcome to the world of Server Side Includes, also known as SSI. The best part about SSI is that it will make your life as a site owner 'oh so sweet.' You're going to want to kiss me after I give you the lowdown on this little beauty.

Let me give you an example. Let's say you have a site with over 50 pages and you need to add another link to your navigation bar. Can you imagine how long it would take you to open each page and update it? By putting your navigation bar into an SSI file, you would only open up that one file and update that -- and the change to your navigation bar will show up site wide. See how simple that was? By editing one file you have updated your entire site instantly.

The most common use of an include file is for your top navigation, your bottom text navigation, copyright, logo or any other piece of info needed to appear on all pages of your site.

So how do you create an SSI file? Glad you asked! An include file can be an HTML file or a simple text file. It should be whatever HTML coding you need for that element of your site, minus the or tags which should remain on your individual pages.

An easy way to make them is to design your web page and cut and paste the code you want into individual files and name them things like topnavigation.htm or bottomnav.htm. By giving them descriptive names, you'll know at a glance which file is which when it comes time to perform those updates.

After creating the files you plan on using as your includes, you'll need to open your web pages and insert a line of code where you want the SSI information to show up in your documents.

The code looks like this:

If your includes are located at the root level on your web server your path would look like this:

That's it. Pretty simple, really. After you get the hang of it you'll wish you would have learned about them years ago. They really do make global updating a snap.

Here are a couple of good sites to learn more about SSI:

Big Nose Bird-
http://www.bignosebird.com/ssi.shtml

CGI Resource-
http://cgi.resourceindex.com/Documentation/Server_Side_Includes/

New Breed Software
http://www.sonic.net/~nbs/unix/www/ssi/

Web Reference
http://www.webreference.com/programming/ssi/intro/

Before you start implementing SSI you need to ask your web host if they support them (most do), and also if they will need to be named with any special extensions. Some servers may require you to give them specific extensions like .asp (if it's NT) or .shtml (for many Unix servers). Although the majority won't, it's always better to ask first. Better safe then sorry.

By designing your website with server side includes you'll save yourself a ton of headaches when it comes time to updating your site. SSI is a Webmaster's best friend, so I suggest you spend some time getting acquainted.

Merle http://www.EzineAdAuction.com "Where some of the BEST Deals in Ezine Advertising are Made" Buy & Sell Ezine Ads in a live auction setting! Publishers sell off your excess inventory and Buyers pick up some Fantastic bargains. Go now.

Virtual Dedicated Server Hosting

A virtual private server, also known as virtual dedicated server, provides one of the ways of partitioning one server computer into multiple servers. By this, each server has the facade and capabilities of running on its own dedicated machine or computer. In each virtual private server hosting, a full-fledged operating system can independently run and reboot each server.

Virtual private server hosting is not a new technology as it had been in common practice in mainframe computers. However, it has its rebirth with the improvement of virtualization software and technologies for other architectures. In all, virtual dedicated server hosting acts as a bridge between shared web hosting services and dedicated server hosting services. The biggest advantage of using virtual private server hosting is its cheaper cost, in comparison to a dedicated server.

A virtual private server hosting generally runs its own copy of operating system with customers having super-user-level access. Above all, in virtual private server hosting, you can easily install almost any software that runs on the OS. At times, certain software does not run well in a virtualized environment. This includes firewalls, anti-virus clients, and even the virtualizers.Having said that, Arachno Net provide their virtual private servers, complete with raid disc mirroring, a secured /tmp directory, firewall and brute force detection system already installed.

Recent time has witnessed the massive increase of the number of virtualization clients. These virtualization clients, usually, run on a single machine. A virtual private server web hosting generally has limited processor time, RAM, and disk space. You will be surprised to know that at times virtual private servers are also employed as honeypots. These honeypots allow a machine to purposely run software with known security flaws. They, of course, make sure that it is done without endangering the rest of the server. Multiple honeypots can be quickly set up through virtual private servers in this fashion.

While choosing a virtual private server hosting company, ask the following questions. Finalize your selection only if you are convinced:

1. What are the specifications of the host server, that is, the RAM, CPU, and network throughout?

2. How many virtual private servers are run on the host server that you'll be on?

3. How is resource contention handled? In other words, what happens if all the other virtual private servers on your host server are running CPU/RAM-intensive processes?

4. Last but not the least, do you have a dedicated minimum amount of RAM/CPU/Network usage? If so, how much?

All these questions are satisfactorily answered by virtual private server hosting provided by Arachno Net. Arachno Net provides network monitoring, daily data backups, 99.7% uptime through multiple oc3 Internet connectivity, and backup power UPS and generators. For more information on virtual private server hosting, virtual private server, virtual dedicated server, and dedicated server hosting, just click www.arachnonet.com .

Reg is a well known author who writes for http://www.arachnonet.com, about evolving trends and practices in web hosting technologies.

Shared Web Hosting, Dedicated Servers And Virtual Private Servers

Many times those that are relatively new to web hosting terminology stumble into some confusion in their quest for a good web hosting plan. One of the major sources of this confusion may simply come down to what is what where web hosting plans are concerned.

In this article I will talk about three different types of web hosting and their differences. These types are shared web hosting, dedicated server hosting and virtual private server. They mostly vary wildly in price and altogether fill different needs as far as hosting plans are concerned.

Shared web hosting is a term used to refer to when a hosting company puts websites from many different users on one server. Every user is usually given some limit to the amount of resources their site is able to consume. When several sites on the same server get busy or a script on one site consumes extra resources the server can bog down, slowing your site.

Most shared hosting plans are very cost effective and if you get a good hosting company you may be able to avoid having your site bogged down by having too many users on one server. Many shared plans can be had for under $10 a month and come packed with features and possibly even free domain registrations.

Dedicated server hosting is the most expensive web hosting of the three. Instead of sharing a server with other users you are in effect renting an entire server for yourself. Usually, all of the resources of the server are at your disposal. Many times hosting companies give you several options for the type of server you can rent and the operating system it runs.

Dedicated servers are for either bigger sites or for the webmaster who has 200 web sites and is tired of paying for 200 shared hosting accounts. Shared or virtual private server hosting accounts usually can handle personal or small business sites.

A virtual private server in essence is a hybrid of a shared web hosting account and a dedicated server. Software on the server is able to break it down into multiple "virtual" servers. The effect is basically like having several servers on the same machine. You would be paying for one of these virtual servers.

Virtual servers allow you the flexibility of customizing your server settings as if you were renting a dedicated server but since you are actually sharing a server with other users you pay much less. Virtual private server plans are usually priced just a bit higher than shared web hosting.

When you search for hosting do whatever research you need to do to pick the plan that's right for you. There are thousands of sites offering quality information about web hosting that will help you to fill in any gaps in your knowledge and enable you to make the best possible decision.

Many hosting plans seem to offer the world on a string for a quarter. That's fine and all but what happens when they cram several hundred busy accounts on one server and your site loads 30kb of HTML in 10 minutes on a DSL connection?

There may actually be many different hosts that can be right for you. Whichever you pick will come down to your requirements for resources like bandwidth and storage space, your requirements for features like PHP and/or ASP, and your requirements for price and level of support. Have fun.

 

Hosting Fanatic Web Hosting Directory

Shared Hosting-Dedicated Server-Virtual Server