It is estimated that humans collectively spend 500 years solving CAPTCHAs each day, so why does blog/comment spam still make it through to your inbox?
Enter Cloudflare Turnstile a simple and effective CAPTCHA that reduces the spam and is seamless for visitors. You can read more about this free product from Cloudflare here on their blog. Keep in mind that Turnstile plugins and components already exist for Wordpress/Joomla etc, so implementation is just a few clicks away.
We’ve been testing Cloudflare Turnstile on Wordpress and Joomla sites with great results. Customers are reporting a reduction, or even total elimination of spam via their contact forms and comment plugins/components. Integration is also simple and can be configured in a few minutes. As part of our Managed Hosting approach, if you are a current customer simply get in touch and we can set this up for you.
Are you taking advantage of our Password Privacy Protection service? We’re ready to share our knowledge and skills to help protect your personal information. Need help getting a password manager setup? Not sure how to use 2FA (two factor authentication). Heard about hardware keys for 2FA but don’t know how to use them? These are all part of the service we are now providing, contact us today and we’ll help you keep safe and spam free.
SSH is arguably the most basic service on a linux based server. It’s secure as well, when using SSH keys (and with root login and passwords disabled) but it’s still a big target for the “bad guys” (mostly automated bots). You can run SSH on a non-standard port (not port 22), but that is just security through obscurity, which really isn’t good practice.
Well, then along came Zero Trust. Cloudflare perhaps didn’t invent this, but they are the biggest proponent of it. What is it? In my own words, it’s VPN less authentication for web and anything else you can access via the internet. Now we can authenticate down to the user, not just the entire network (like a VPN). How does it work? You authenticate to the Zero Trust Service via a webpage and once that is done, any applications that you have been given access to are automatically authenticated or protected behind the Zero Trust Provider, in this case Cloudflare Can you do the same for SSH? YES SECURELY and IN THE BROWSER. It’s not new, it’s free (for up to 50 applications) and it’s easy to setup. See the original blog post here.
Add an application, making sure you follow these specific steps At this point you can actually login to SSH in the browser, but you will need to authenticate yourself
Configure a short lived certificate to allow automatic login to SSH in the browser A word of warning, the SSO identity you use to authenticate with Cloudflare access will be the username passed to your server, read this section to understand this
The possibilities are endless once you get your head around this. You could protect a Wordpress admin login page (though automatic login to Wordpress is not something I’ve explored yet). Grant secure access to a server running in another location, and as discussed here, actually login to SSH in the browser.
With this done (Zero Trust SSH) you can go ahead and close port 22 of your server. How much safer do you feel?
Managed hosting is a common marketing term many web hosts are now using. It means different things to different people, but let’s explain what it means to you as our customer.
People. The person who you interact with will personally have the access and authority to resolve or action your request. None of our support is outsourced.
Product. We’re not just providing you a hosting service, we are providing you a fully managed product. You tell us what you need, we make it happen. For example you may ask: “Please duplicate this existing website of mine to a new location” or “I need a new Wordpress site setup on this domain”. We do the rest. We don’t just give you what you asked for, we go further and setup our tools to give you what you need (as well as what you asked for) not only caring for your current needs, but also anticipating what you will need in the future.
Systems. We have systems in place to proactively monitor, audit and resolve any security and website issues. This is in your best interests as it means less problems (or none at all) with your websites. We know of any issues and resolve them before you even notice.
Speed. We want you to have the fastest loading website you can. We work with you to optimise and setup our custom caching and speed solutions. Some of these may include CDN, NGINX, FastCGI, Redis Database query caching.
Security. The internet is a dangerous place, so we have setups that automatically block bad traffic and malicious login attempts and well known hacks. We monitor live certain key files on your website to ensure that none of them have been modified without your knowledge. We update your website and any plugins (Wordpress/Joomla) for you. This isn’t a paid add-on, we offer it free for all customers.
Backups. You’ve heard of them, have you had to use them? Was it easy? We provide free off server backups to you, so you have access to them at the same time we do. We provide you a tool in your website that allows you to restore from these backups at any time.
DNS and Domains. We provide a fully managed DNS service to you. You don’t have to understand DNS to work with us, we will look after it all for you. SPF, DKIM, DDNSEC, CNAME, AAAA, SSL etc, we know all this so you don’t have to.
Flexibility. There is no one size fits all solution, so we will tailor the hosting solution to meet you and your customers needs. As your site grows, we grow with you.