Server Security Statement

While Cyberfrog can provide hosting for your website, we use the UK company, Clook, for our web hosting provision. Your website security is important to us and here are the measures taken to ensutre that your website remains safe and secure on the web server. Please note, that this is the server statement and a website can come under attack if it is not kept up-to-date and well-maintained (please see our Enhanced Service Level for more details).

Clook’s server sucurity measures include:

FTP Enforcer

All website accounts are locked by default and IP addresses have to be whitelisted to gain access. Only Cyberfrog can whitelist an account and grant authorised FTP access.RAID

Everything is stored on RAID, live and backups. RAID level varies depending on type of data and platform to whatever is appropriate, but it will always be a level of RAID with some redundancy for failed hard drives (1 at a bare minimum). Website and database backups are made daily and one weekly and one monthly version is retained.Firewalls

Clook use the ‘ConfigServer Security & Firewall’ in Linux and by default this is set quite restrictive though, of course, allows access to mail ports, web ports etc.Monitoring

Clook monitor in a few different ways. Firstly, they have some of their own custom monitors which watch certain logs (mail logs, web logs, etc.) and block IP addresses using the CSF firewall which perform suspicious behaviour. Sometimes this extends into CMS related things, for example they monitor WordPress related web logs and block brute forces on WordPress admin pages. This shouldn’t replace security on the CMS side and is more of an extra defence. They also monitor security-related issues in their standard monitoring system, such as the mail queue size, to identify spam being sent from the server. Finally, they run regular malware scans on the accounts at night to catch any backdoors uploaded by malicious users and then would alert Cyberfrog if they find any using an abuse ticket.WAF/ModSecurity

Clook run mod_security by default, which is a Web Application Firewall. This inspects web traffic and can provide a last line of defence against CMS issues (for example there may be a vulnerability in the CMS software used) but mod_security notices the traffic and blocks it anyway. It should be noted that it is a last line of defence and not a fool proof system and maintaining a website properly and patching the vulnerability in the CMS is still vital.Clook’s servers also have Imunify360 installed – https://www.imunify360.com/