FireHost Advanced Secure Hosting
Your Data is Valuable to Hackers
Website attacks can produce devastating results — from high profile data breaches to brand damage, lawsuits and fines. Organized hacker networks are attacking websites of all sizes to get personal and financial data to sell on the black market.
Hackers have gone professional, yet most hosting companies still do not provide security to match the heightened threat of sophisticated attacks. The days when simple firewalls and intrusion detection systems (IDS) were enough to keep your website secure are long gone. Now, preventing a hacker from taking over your website and stealing your data requires a much deeper, more serious approach at every level.
Protect your Website. FireHost Advanced Web Security.
FireHost Advanced Web Security protects your website with levels of security only found within enterprise companies. We take security seriously so you can protect your company’s valuable data, applications and information assets.
FireHost Advanced Security
- Secure Hardened Network Design
- Redundant Managed Firewalls
- Muli-level Intrusion Prevention
- Policy-based Web Application Protection
- SSL VPN for Administration (DB | RDP | VNC | SSH)
- Encrypted Server Backups
- Security Event Monitoring and Alerting
- Secure Physical Data Center Monitoring
- DoS/DDoS Protection
- Change Management Protocols
Secure Hardened Network Design
FireHost advanced network design segments and hardens all sensitive end-points. Combining the best in perimeter security and aggressive internal scanning, our hosting is one of the most secure you will find. FireHost's network environment includes:
- Hardened Role-based Servers
- Protected Private Network
- Secure Control Panel Access
- Honeypot Utilization
Redundant Managed Firewalls
Just having simple firewalls is not enough. Our secure, redundant, role-based firewall environment locks down all ports that are not absolutely essential for the role to help ensure 100% port-based security. For example, FireHost web servers only have port 80 (standard web port) and 443 (SSL web port) open. No other ports are open for the entire server.
Multi-level Intrusion Prevention
Every Firehost web server uses special intrusion detection and prevention systems (IDS, IPS) to block malicious network-, application-, and operating system-level activity, including overly active hosts, bad logons, inappropriate content and other network layer events.
Policy-based Web Application Protection
Every FireHost web server is protected by an enterprise-level web application firewalls that actively protects web applications and databases against sophisticated application hosting attacks. All application and database activity is monitored and inspected. Any illegitimate application activity is blocked, based on security policies that automatically adapt over time.
Specifically, the web application firewall protects your web applications and databases from sophisticated application hosting attacks, such as SQL injections and cross-site scripting to help prevent data theft and data leakage from online web applications.
Web Application Security Help Prevent Against:
- Web, HTTPS (SSL) and XML Vulnerabilities
- SQL Injections
- Session Hijacking
- Cross Site Scripting (XSS)
- Form Field Tampering
- Known Worms
- Zero Day Web Worms
- Buffer Overflow
- Cookie Poisoning
- Denial of Service (DoS)
- Web Server and Operating System Attacks
- Directory Traversal
- Anonymous Proxy Vulnerabilities
- OS Command Injection
- Cross-Site Request Forgery (CSRF)
- Google Hacking
- Remote File Inclusion Attacks
- Illegal Encoding
- Malicious Robots
- Parameter Tampering
- Brute Force Login
- Malicious Encoding
- Illegal Encoding
- Credit Card Exposure
- Patient Data Disclosure
- Corporate Espionage
- Phishing
- Data Destruction
- US SSN Leakage
Having an application firewall is especially important when your website uses open source platforms like Drupal, WordPress, or Joomla. These are great CMS platforms, but without a properly protected hosting environment, they may be easily exploited by hackers.
SSL VPN for Administration (DB | RDP | VNC | SSH)
Administrator-level access to your servers is only available through an SSL-based VPN connection. FireHost provides this secure connection as a standard feature on all secure virtual private server and dedicated hosting plans.
Encrypted Server Backups
All FireHost backup storage is encrypted with strong encryption using RSA keys and the Blowfish Cipher.
During synchronization, data is encrypted and sent to our local redundant backup environment where it is stored in an encrypted format. The data can only be decrypted using a RSA key protected with a pass phrase. Once backed up, we securely move all data to our offsite facility over 1,000 miles away for logistical redundancy.
Security Event Monitoring and Alerting
All web server log file data is recorded and monitored for suspicious activity. Alerts are sent to our security team for investigation and resolution.
Secure Physical Data Center Monitoring
FireHost data center facilities are monitored inside and out at all times. Proximity readers and biometric scanners are used to control access to the building and to the server room. Our facilities are all manned 24 hours a day, 7 days a week, 365 days a year.
Distributed Denial of Service (DDoS) Protection
Our infrastructure can distinguish good traffic from DoS/DDoS attack traffic. FireHost will block up to 1 Gbps of DDoS traffic by inspecting data packets and blocking invalid traffic at the network layer before it ever reaches your servers. Should an attack exceed 1 Gbps engineers immediately follow protocols by alerting our backbone providers of the origin(s) of such an attack, so they can be mitigating at the backbone level.
Change Management Protocols
When employee turnover or positional job transitions occur, FireHost follows strict protocols to help ensure access adjustments are completed securely. In addition to change management policies, we take excessive measures to help ensure human manipulation never occurs in our network environment.
FireHost Secure Hosting
Dan McKay IT Manager www.hungryhowies.comEveryday between 4pm - 8pm, our website gets hit by thousands of visitors rushing to order our pizzas. With FireHost there's never a delay for our customers and that ensures we never lose a sale. We expect great service, and FireHost always exceeds those expectations.
