Secure and Professional
Wordpress & Website Hosting
- Has your website ever been hacked?
- Are your wordpress web extensions and plugins being updated?
- Are your core CMS files being updated?
- Is your website hosted in another country?
If any of the above are concerns for your website, Redback can help. With over 600 sites under management we have the expertise to keep your site safe, secure and updated.
What will Redback do for your hosting?
1. Server Updates
Each fortnight Redback applies that latest Linux & Windows security patches and updates.
2. Plugin Updates
At least 3 times a week Wordpress sites have any outdated plugins updated to the latest version.
3. Version Updates
We will update your core CMS version to the latest version automatically. If there is a major update that requires our developers to be involved then a proposal will be sent outlining what is required and the cost involved.
4. WAF - Web Application Firewall
Redback has implemented a web application Firewall service (WAF) which is a hardware-accelerated Layer 7 firewall, using industry-leading technology from F5 that protects your web application from security exploits. The MvWAF device maintains a large database of signatures that model common web application attacks, including SQL Injection, Cross-Site Scripting (XSS) and HTTP Header injection.
MvWAF Signatures are compared against requests made to your application in real-time without impeding on the performance of your application, with illegitimate requests being rejected, and doing the best it can to protect your application from corruption and compromise.
When you go to a site that uses HTTPS (connection security), the website's server uses a certificate to prove the website's identity to browsers.
What is a TLS/SSL Certificate
TLS/SSL is a standard security protocol which establishes encrypted links between a web-server and a browser, thereby ensuring that all communication that happens between a web server and browser(s) remains encrypted and hence private.
Redback’s secure hosting provides the safety and security of a 2048 bit SSL security certificate for your and your clients peace of mind.
Each site on Redback's Linux servers is contained within its own cPanel instance with locked down file permissions. What this means is that if one site does somehow become compromised then all other sites are further protected. We also have security modules installed that notify Redback when code is changed or suspect files updated.
Redback solutions offers the highest quality hosting solutions through our partnership with ASX listed company Bulletproof Networks.
Our solutions are deployed to Cloud Security best practices and come standard with the following configurations.
- Hardened server templates
- Security certifications and compliance
- Managed security groups
- ConfigServer Security & Firewall, ConfigServer eXploit Scanner and ClamAV Scanner
- Availability of managed DDos protection
Additionally Redback has implemented a web application Firewall service (WAF) which is a hardware-accelerated Layer 7 firewall, using industry-leading technology from F5 that protects your web application from security exploits. The MvWAF device maintains a large database of signatures that model common web application attacks, including SQL Injection, Cross-Site Scripting (XSS) and HTTP Header injection.
MvWAF Signatures are compared against requests made to your application in real-time without impeding the performance of your application, with illegitimate requests being rejected, protecting your application from corruption and compromise.
Multiple levels of security can be achieved with the WAF service, with the one best suited to you determined by the protection or compliance you need to obtain as well as the complexity of your application.
The standard WAF service provides a default ruleset to provide application-level protection against common attacks. More advanced protection is available through the use of customised WAF profiles. Such advanced protection can include PCI Compliance profiles, thereby ensuring basic compliance with the PCI DSS Certification by filtering responses leaving your server, checking that no private information (such as credit card numbers) is being leaked.
Increased customisation can also be achieved by further profiling of your specific application's behaviour, with the WAF able to model normal application behaviour, and match the URL schemes, form content and HTTP methods specific to your application, providing maximum security.
An example of monthly stats from the WAF:
For a full explanation click here to see the new document.
If you are interested in having your website protected and hosted with Redback Solutions, give the guys in the Newcastle office a call on (02) 4962 2236.