How Can I Secure My Website

How Can I Secure My Website http://hydbullion.oeg With SSL


Or Any Thing Else

So That No One Can Create The Same Website With My Template Or Supporting Data

 

anyone can clone a site . When someone able to view your site, it mean they can read your html code. With these code and images, they can rebuild it to their own.

Other than this, i would suggest secure your server instead.

 

1: Copyrite your website's content.
2: Be on the look out

As he said, anyone can clone a website. You just need to have the resources to get them when you catch them.

 

Having SSL doesn't make your site clone proof, if you use scripts, keep them up-to-date, make sure other sites on the server are using it ith care, Check file permissions.

 

if u are afraid of hackers then better....install DDOS...protection.

 

Hi
I wouldn't care much of the cloning. To protect your content you can copyright it. And I wouldn't care much about DDoS since you can't do much against it unless you own the server (and the firewall/router to block/mitigate the attacks).

I would instead care about web application security, 80% of the attacks start from there. This implies having secure pages against sql injection, xss, csrf bugs, session fixation and so on. SSL doesn't protect you against these attacks. It is just a way to encrypt data between client-server and set up a trustworthy (encrypted) channel.

You can PM me if you're interested into web site security services

 

Keep it off the internet. If you can see it, you can steal it. Programmers don't need access to code to recreate things.

 

You can use source gaurdian to encrypt your sourcode and to make the encrypted code work only on your domain .

 

You might want to consider your user/admin authentication. Hackers are focusing on your website admin panels and use keyloggers or a number of other methods to get your static passwords. You can add dynamic token authentication through services like ShieldPass or VeriSign where you or your users then use a access card or electronic dongle to login with a password that changes every time.

 

If you are not planning to make any transactions with sensitive information, then you can leave your web site operating on the standard HTTP protocol, ie without private SSL certificate.