• HOME
• SERVICES
  • Web Hosting Plans
  • Choosing a Hosting Plan
  • Search Engine Optimisation
  • Web Development
  • Graphic Design
  • Other Services
  • Signup Online
• DOMAIN NAMES
  • Prices & Details
  • Choosing a Domain
  • Register Now
• RESOURCES
  • Domain Tools
  • Email Tools
  • Search Engine Tools
  • Web Hosting News
  • Recent Viruses
  • Useful Downloads
  • Web Hosting Articles
  • Newsletters
  • Web Hosting Links
• SUPPORT
  • Knowledgebase
  • FAQ's
  • Service Status
  • Request Help
• ABOUT
  • Company Info
  • Our Network
  • Why Host With Us
  • Testimonials
  • News Articles
  • Contact Us

Got your own email or web server? Ten top security tips

The following information has been compiled thanks to the help of The Australian Communications and Media Authority (ACMA).

Got your own server? Make sure it is secure…

The Internet can offer your business many benefits – but it can also expose you to increased security risks. This section of our web site helps you understand the basics of good computer and Internet security.

Many small businesses rely on the Internet to communicate with customers, suppliers and business partners. Other businesses go a step further: instead of using general email accounts provided by Internet Service Providers (ISPs), they choose instead to run their own web and email servers.

While running your own server can cut costs and bring greater flexibility, it can also expose you to bigger security risks.

If your business runs an email or web server, you probably rely on it to send and receive email and to present your online presence to the world. Inadequate security practices can disrupt your business, expose sensitive information, cost you money and put your computers at risk of being hi-jacked by spammers.

Most spam is sent out via spammers who take control of computers just like yours: don't let security lapses allow these people to take advantage of you.

Information held in IT systems is crucial for the operation of many businesses. Good security policies and practices help preserve the confidentiality, integrity and availability of data and services.

Spammers actively hunt for computers with security vulnerabilities. Spammers use these compromised computers both as a platform from which to attack other computers, and as a conduit for sending vast amounts of illegal spam.

If your business networks have been compromised, this can result in the disclosure of sensitive information, corruption of data, business downtime, damage to your reputation and the hassle of removing your business from spam 'blacklists'. You are also financially liable for the excess ISP data charges that accrue when your computer is used to send spam.

Like all forms of security, computer security costs money. A security policy outlines the chosen balance between risks, possible consequences and cost. Developing and following a security policy requires management support, skills and input and is not simply an issue of technology.

This section presents 10 ways you can improve the security of your server (that is, ensure it is not compromised) and build a strong security policy. You can learn more about any of these security tips by browsing in a computer bookshop or by using your favourite Internet search engine.

A firewall is your computer network's first line of defence against intruders. Firewalls can block all traffic between your network and the Internet that is not explicitly allowed. Firewall software is built into modern operating systems and can also be purchased as special-purpose hardware. Basic firewall settings to help get you started are readily available from your vendor or the internet.

Most operating systems are supported by automatic updates ('security patches') that fix vulnerabilities found in important software components. You should either use the 'automatic update' option, or subscribe to a security-related mailing list and install these patches when necessary.

Viruses and other malicious software, such as worms and Trojan horses, can alter or erase data on your computers; allow spammers and other intruders to use your computer and network; and may replicate and spread to others.

If you run an email server, you can install anti-virus software at the server to filter out email viruses before they reach users.

Each individual computer should also have up-to-date anti-virus software. Viruses and worms spread fast, so your anti-virus software must be updated regularly.

Passwords are surprisingly easy to guess. Read the simple rules described in AusCERT's 'Choosing Good Passwords' guide (see 'General Security', below).

After installing software, check the configuration / setting options – you may find the software has extra features you don't need or want. Turning off unnecessary services is a good security precaution.

Back up your data regularly. Verify your backups from time to time.

Your servers can be compromised without your knowledge. Monitoring your servers can alert you to intrusions as they occur, as well as allowing you to check the servers are working properly. Turn on the 'logging' function as a first step. Ask your vendor or an expert about the best way to monitor your network.

Reputable organisations such as AusCERT offer free mailing lists that allow subscribers to keep an eye on the latest security risks and tips.

Mail servers are very attractive targets to hackers and spammers because they exchange data between external users and internal users.

'Relaying' is a feature in mail servers that allows the server to forward mail from one external domain to another. If you run an 'open relay', spammers will quickly find your computer and use it to send spam, which may result in your server being blacklisted – which will stop you from being able to send legitimate emails.

Web servers are large, complex, and highly configurable (that is, they can be fine-tuned to suit your needs). As such, they are often targeted by hackers and spammers. Make sure you know what you are doing if you are setting up such a server. If in doubt consult an expert,

The two most popular web servers are Apache and Microsoft Internet Information Server (IIS). The default installations of both servers are often adjusted to improve security (see the links below).

Modern web servers can also run as 'proxy servers', a feature which allows users to forward web requests through your servers. If you run an 'open proxy', allowing open access to your proxy, spammers will quickly find your server and misuse your generosity, which could harm your reputation and result in your business being placed on spam blacklists.

Outsource: ISPs and other service providers offer IT solutions that include security management. 'Bundled' services cost may more than a one-off equipment purchase, but the comfort of knowing someone is on your side when it comes to IT security and support may be worth it.

The AusCERT National Information Technology Alert Service offers a free mailing list notifying subscribers of the latest threats and vulnerabilities affecting computer systems http://national.auscert.org.au