Securing your site is important, and should not be neglected. A few basic concepts can make your site more secure for yourself and your visitors.
Never keep default or simple passwords that can be found in the dictionary. A brute for cracker can compromise these passwords. You can use a phrase and special characters and numbers to make them easier to remember for example: 1H0stSitez54*. Default passwords should also be changed for databases and ftp connections.
SSL ensures that visitors are talking with YOUR website, and not an impersonator or an eavesdropper. This encrypts all communication so that an outsider cannot see what is being sent. Enabling SSL is available at low cost or even free.
Credit Card Information
It is not recommended that small business store credit card information in their databases. It’s recommended to have your payment processor handle it, while you securely transmit it to them.
Updates to Content Management Systems
Content systems make life easier for all of us, but an outdated content management system can be a disaster waiting to happen. Vulnerabilities in content management systems are often publicized and some malicious internet users seek or run scripts to exploit them. The best way to avoid this is to check your site monthly for security updates, this applies to Drupal, WordPress, and any other content management system being used.
Review Search results
Some site data should not be displayed in search results, review search results for your site periodically to make sure embarrassing or private pages have not been indexed, and appear in search results.