At FatLab we offer managed WordPress hosting to our website maintenance and support clients. By ‘managed hosting’ I mean we take care of the site, not just give some space on a server but rather we are ultimately responsible for doing all we can to keep the site up and running on a stable platform.

Protecting Your Website

Part of ensuring the site is secure and the platform remains stable is protecting those websites we host against known security threats such as distributed denial of service (DDoS) attacks, SQL injection, brute force attacks and so many other kinds of malicious traffic that can do so much harm to a site and the environment that it is hosted in.

Easier Said Than Done

Here are the problem… WordPress is a magnet for hackers, being the most popular content management system (CMS) in the world, those that do evil often do so against the platform they are most likely to exploit. Combine that with the shear number of plugins, themes and the ever changing WordPress core and you are bound to find some security holes. The fact is that most WordPress websites are regularly hit with malicious traffic (on average 300+ times a day according to security company Sucuri) , the question is not what happens IF you get attacked but rather what happens when you ARE attacked.

Enter Sucuri Website Firewall

In late 2014 we started utilizing the Sucuri Website Firewall, a Web Application Firewall (WAF) / Security Proxy for the majority of our hosted sites and in 2015 have made it a standard (mandatory) part of our hosting service.

Sucuri Website Firewall Threat Pie Chart

Pie chart from Sucuri Firewall shows blocked threats

 

Sucuri protects a website by analyzing inbound traffic to the site. When it it recognizes a threat, such as an injection attempt, a WordPress brute force login attempt, a malicious bot that could lead to comment spam or large bandwidth consumption to the site – it blocks it.

Sucuri Website Security Traffic Graph

Graph from Sucuri Website Firewall shows blocked and allowed requests

Virtual Patching

Another great feature of the Sucuri Website Firewall product is that it virtually patches WordPress against known threats. Meaning that though the protected WordPress site, its plugins or themes may not be up to date, the Website Firewall blocks known security threats to these out of date and insecure software versions – virtually patching the site in real time. This alone is an incredible part of the service because anyone who has ever managed a WordPress website will tell you, unless you are patching every single day… your website is probably out of date.

One For All and All For One

The beauty here, and why we made this a standard service offering, is that by ensuring that just about all hosted websites are protected with such a service we not only protect each individual site but the we protect the entire hosting environment. It only takes on site on a shared platform to come under attack for it to effect the performance of every other site hosted on the same system.

top image from Sucuri.net