Website Security

General discussion

Creator

Topic
April 25, 2023 at 8:48 am #4073446
Website Security

by benjaminsherman669 · about 7 months, 2 weeks ago

Tags: Security, Web development
Hey there,
I have a Php Built Tool Based website, it hosts Fee Calculator tools for online payment processors, whenever i try to preview my website as a user it shows a message that This website is not secure, i have already installed SSL Certificate on my website.
Any sugguestions?

Internet link deleted as SPAM by moderator.
- This topic was modified 7 months, 2 weeks ago by birdmantd.
Creator

Topic

Post Reply

All Comments

Author

Replies
- April 25, 2023 at 10:10 am #4073477
  
  Re: security
  
  by kees_b · about 7 months, 2 weeks ago
  
  In reply to Website Security
  
  What exactly is “it” in “it shows”. I assume it’s Chrome.
  
  Do you use a https:-URL? Do you redirect a http:-URL? See https://www.hostpapa.com/blog/web-hosting/fix-https-not-secure-message-in-chrome/ for example.
- April 28, 2023 at 2:53 am #4075863
  
  Website security
  
  by leelajay.gaurav · about 7 months, 2 weeks ago
  
  In reply to Website Security
  
  Securing a website is an essential aspect of website development and maintenance. Here are some steps you can take to secure your website:
  
  Use HTTPS: HTTPS encrypts data sent between the website and users’ browsers. It helps to prevent man-in-the-middle attacks and data interception. You can obtain an SSL/TLS certificate from a trusted certificate authority to enable HTTPS on your website.
  
  Keep software up to date: Keep your website’s software, including the content management system (CMS), plugins, and themes, up to date with the latest security patches and updates. Attackers often exploit vulnerabilities in outdated software to gain access to websites.
  
  Use strong passwords: Use strong, unique passwords for all user accounts on your website, including admin accounts, and encourage users to do the same. Avoid using default passwords or easy-to-guess passwords.
  
  Implement two-factor authentication (2FA): Implement 2FA for all user accounts, especially for admin accounts. This adds an extra layer of security, making it more difficult for attackers to gain access to user accounts.
  
  Use a web application firewall (WAF): A WAF can help protect your website from common attacks like SQL injection, cross-site scripting (XSS), and cross-site request forgery (CSRF). Many hosting providers offer WAF as part of their services.
  
  Regularly backup your website: Regularly backup your website and store the backups in a secure location. This can help you quickly restore your website in case of a security breach or data loss.
  
  Educate users: Educate website users on security best practices, such as using strong passwords, avoiding phishing emails, and being cautious about clicking on links or downloading attachments from unknown sources.
  
  By following these steps, you can significantly improve the security of your website and reduce the risk of a security breach.
- April 30, 2023 at 6:50 pm #4078556
  
  Reply To: Website Security
  
  by oliviadevid143 · about 7 months, 1 week ago
  
  In reply to Website Security
  
  Hello! It sounds like your website might have some mixed content warnings. This happens when your website is served over HTTPS (with an SSL certificate) but there are still elements being loaded over HTTP (non-secure connection). You can try the following steps to fix this issue:
  
  Check your website for any references to HTTP (rather than HTTPS) in your HTML code. You can use the “Inspect” tool on your web browser to look for these.
  
  Update any references to HTTP to use HTTPS instead. This includes links to images, stylesheets, and other resources.
  
  Ensure that any third-party widgets or tools you’re using (like payment processors) also support HTTPS.
  
  If you’re still having trouble, you can use a tool like the “Why No Padlock?” website to help identify any remaining mixed content issues.
  
  Once you’ve resolved any mixed content warnings, your website should show up as secure for your users.
Author

Replies

Viewing 2 reply threads

Start a Discussion

Start New Discussion

The purpose of the Incident Reporting and Response Procedures Policy from TechRepublic Premium is to establish a clear and efficient process for employees to report security breaches, device loss, or data exposure incidents involving personal devices used for work purposes. From the policy: CONFIDENTIAL REPORTING Employees are strongly encouraged to promptly report incidents, and they ...

Cryptocurrency is a popular technological worldwide trend. As with any investing avenue, the revenue one can make dealing in cryptocurrency can vary depending on the time put into the endeavors, market fluctuation, choice of investments, available capital, how loss averse you are, your short- and long-term strategies and other traditional investment factors. Be forewarned, scams ...

Artificial general intelligence, or AGI, is a hypothetical form of AI designed to perform human-level cognitive functions, such as the capacity to self-teach. AGI is regarded as very powerful since it can autonomously solve a wide variety of cognitive tasks, as opposed to weak or narrow AI systems that carry out only particular or specialized ...

Security

General discussion