Website owners should seek to prevent their websites from getting attacked and compromised/abused/defaced etc.Check here with Uptime Robot, it is for free:
http://uptimerobot.com/#newUserA few tips to prevent website hacks and defacements.1. Always keep your server operation software and any other software that is running on your website up to date.
Know that attackers are know to abuse out of date or left software.
2. Hosting company managment solution should keep you secure. Go for dedicated hosting. Whenever on shared hosting,
get to know your neighbors, else ask to be moved out on a different server.
Cheap or free bulk hosting will give you two rewards you do not want - security issues or performance issues.
The choice of a good hosting provider is the most important choice you may come to make.
3. With CMS and forum software apply security updates. WordPress should notify you whenever you log in.
Disable user enumeration and directory listing. Update (free) plug-ins and retire left code.
4. Always use parameteriosed queries to avoid risks of Standard Transact SQL.
5. XSS. Always ensure you check om data that are being submitted and encode or strip out HTML.
Use SRI hashed attributes, the solution came out of beta now. There is a free WordPress plug-in for it.
6. Keep your server and CMS software silent, do not let it speak out loud, keep your error messages vague.
7. Use an appropriate complex password routine, store them encrypted and salted.
8. Prevent direct access to uploaded files alltogether, store them outside root or on a blob.
9. Have your database on a different server and your webserver as well, so it cannot be directly accessed.
10. SSL. It is a good idea to use it for personal data that could become corrupted.
11. Block automated script attacks. Use code scanning as an early warning system.
We started this posting on that one.12. Scan for typical exploit code.
13. Use DNS Blacklists.
14. Avoid PHP running as a module when allowing global write permission.
15.Critical websites should undergo penetration testing.
16. Protect sensitive data by putting them in separate files for config and data base.
Avoid client side checking with Javascript, it is insecure.
17. Implement automated backups for actual website and supporting databases.
18. Disable anonymous FTP on your server. Only allow access from outside via ports 80 and 443.
19. Avoid public PCs and Wifi Points to get access to your admin panel. Use a VPN.
Do not update your blog from the barber shop. It looks cool, however it is insecure practice.
20. Check your logs. Limit access to your resources. Use stronger passwords, and do not use default ones.
Info credits go out to authors from Decision Group and mafudge polonus