It’s not always sunshine and rainbows out there online, and if you’ve ever been the target of a nuisance IP, you’ll know what a massive headache it can be.
You know we love keeping your servers secure. Which is why we’ve had two-factor authentication on STORM for, well, ages now. It’s essentially a second layer of security that makes sure anyone trying to get into an account, a system, or in our case a server, is who they say they are.
Here at Nimbus we love making life easier – and websites more secure. Which is why we’re really pleased to announce a nifty new update that ticks both boxes.
A very common reason for downtime or compromised websites is down to a feature in WordPress called XML-RPC. XML-RPC is used as a remotely accessible publishing tool using an offline blogging tool. This was very popular in the early days of WordPress when broadband speeds were much slower, as it made publishing much faster. However, these days it is very rarely used and causes far more problems than it solves.
At Nimbus Hosting we are constantly monitoring which features are being used and how users are interacting with them. This process allows us to quickly discover bugs and constantly evolve how we offer our product.
With other hosting platforms like Plesk and cPanel it is common to share the login to your servers with your team. With STORM we take a different approach that each member of your team should be invited into the server instead. We have made this process very easy by just typing their email address into the team section of each server and clicking invite. If you have multiple servers we have recently added a tick box to invite them to all of the servers in one invite.
Let's Encrypt, launched in April 2016, has been a game changer for any digital agency. Let's Encrypt gives any web site the ability to secure the website traffic on any staging, development or live web site for zero cost within minutes.
With GDPR very much a hot topic with the go live date on Friday (25th) of this week we have launched a new feature to improve server security. You can now toggle Force Two Factor, which will only allow STORM users with Two Factor enabled to view and manage a STORM server.
A couple of STORM users have contacted us recently about making sure their servers are as secure as possible. Although STORM is secure by design there are a three additional methods for improving your security.
We've been a little quiet on development of STORM with lots of changes happening in the background ready for a raft of new changes happening soon. We'll be updating up on these changes in the coming weeks. However, this week, we've launched a two page login. A few industry leaders have recently changed over to two page logins including Google and Offic365 and we've decided to follow suit for a number of reasons.