VP-ASP :: Shopping Cart Software

Shopping Cart Software Solutions for anywhere in the World

US/Canada(Toll Free): +1 888 587 2278
Europe/UK: +44 (020) 7193 9408
Australia/New Zealand: +61 3 9016 4497

Search Helpnote Topics

 

*** SECURITY CHECKLIST ***

*** SECURITY CHECKLIST ***

Security Audits
VP-ASP is committed to providing it's customers with as much security help and information as possible. As such, we have employed a team of security professionals to assist in auditing your site's security from as little as US$295.

For more information click here.

At VP-ASP we are committed to helping you ensure your site is as safe and secure as possible. Failure to follow the guidelines presented below may result in your site falling victim to hacker attacks.

Have you changed your passwords? The default username and passwords used to access the admin need to be changed. Ensure that you choose a powerful password. Click here to find out how.

Have you added a 2nd password? Click here to find out how.

Have you renamed your Admin Page? It is recommended that the admin log in page is a stand-along page with no reference in the database. Click here to find out how.

Is your xadminmenucheck set to ‘YES'? Click here to find out how.

Is your xrestrictadmintables set to ‘YES'? Click here to find out how.

Is your xshowadmin set to ‘NO'? Click here to find out how.

Have you changed your database name? Change the name of the database to something unique and hard to guess. Reference this new name in the shop$config.asp file. Click here to find out how.

Have you removed all files starting with the letter “c”? Click here for a list of these files.

Have you removed all files starting with “diag”? Click here for a list of these files.

Are you encrypting credit card numbers & is your encryption code different to that of the Payments section of the config? Click here to find out how.

Are you deleting all credit card numbers? If you are taking credit card numbers into your system rather than using a Payment Gateway, do not store the details any longer than necessary. Click here for more info.

Is your database secure? Is your database in a secure location and are you sure it cannot be downloaded via a browser? Click here to find out how.

Are you accessing your Admin using HTTPS and storing credit cards? Never access your admin using a normal HTTP if you store credit cards. Always use the HTTPS at the start of a web address.

Have you kept your passwords safe & have you changed them recently? Never give out your passwords under any circumstances. Change them regularly.

Are you regularly checking our pages for Updates? Always check the Security Update and Patches pages for updates. Bookmark these pages or set them as your default home page – this way you will always be on top of new updates or security releases.


Times Viewed:
28655
Added By:
Cam Flanigan
Date Created:
12/9/2005
Last Updated:
7/7/2010
Back Search other topics Submit a Ticket