moodLearning Wiki

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
why-moodlearning-hosted-site [2019/03/10 03:12]
serbizadmin [See Also]
why-moodlearning-hosted-site [2021/11/29 15:36] (current)
serbizadmin
Line 1: Line 1:
 ====== Why moodLearning-hosted Site? ====== ====== Why moodLearning-hosted Site? ======
 +
 +{{  :why_ml_site.png?600  }}
 +
 +===== Optimization =====
 +
 +A moodLearning-powered site comes with free consulting on optimization, making sure that you have access to the right tools to make your site most accessible to your audience. If you build your site with us, we take optimzation measures like:
 +
 +  * making sure your site is hosted closer to your intended audience
 +  * design elements are complete and optimized for fast loading
 +  * use of content delivery network (CDN) for parallel loading of site assets and elements.
 +  * the site loads properly across platforms, especially on mobile devices.
 +
 +Optimization is never a one-time activity. At moodLearning, a few bytes more load time saved are just around the corner.
  
 ===== Security ===== ===== Security =====
-At moodLearning we take security seriously. If you don't take it as seriously as we do, + 
-  * your site could be an unwitting accessory to crimes. See example of the search engine results for a compromised site with nefarious contents uploaded by a "hacker" \\ \\ +~~NOTOC~~ At moodLearning we take security seriously. While there can be no 100% guarantees of online security for a long time, we want to do our homework. If you don't take it as seriously as we do, 
-{{ ::googleresultsofhackedsite.png?400 |}} + 
-\\ +  * your site could be an unwitting accessory to crimes. See this example of the search engine results for a compromised site with nefarious contents uploaded by a "hacker"
-\\ + 
-On your end, you may not even notice the "hacking" if you don't pay close attention to it. On your dashboard, the pages have been published by "you": \\ \\ +{{  :googleresultsofhackedsite.png?400  }} \\  \\ In the case of an organization whose site was recently compromised, we had to help rehabilitate their online reputation. moodLearning caused the removal of over a thousand pages of shady pages on gambling, antivirus, thesis and dissertation writing, mail-order brides, data rooms, viagra. \\  \\ On your end, you may not even notice the "hacking" if you don't pay close attention to it. On your dashboard, the pages have been published by "you": \\  \\ {{  :dashboardarticles.png?400  }} 
-{{ ::dashboardarticles.png?400 |}} + 
-\\ +  * your site could be open for exploitation. This is a sample scanning result from an actual insecure site: 
-* your site could be open for exploitation. This is a sample scanning result from an insecure site: + 
-<code> +''PORT STATE SERVICE VERSION 21/tcp open ftp Pure-FTPd 22/tcp filtered ssh 26/tcp open smtp Exim smtpd 4.91 53/tcp open domain ISC BIND 9.8.2rc1 (RedHat Enterprise Linux 6) 80/tcp open http nginx 1.14.1 110/tcp open pop3 Dovecot pop3d 135/tcp filtered msrpc 139/tcp filtered netbios-ssn 143/tcp open imap Dovecot imapd 443/tcp open ssl/http nginx 1.14.1 445/tcp filtered microsoft-ds 465/tcp open ssl/smtp Exim smtpd 4.91 587/tcp open smtp Exim smtpd 4.91 993/tcp open ssl/imap Dovecot imapd 995/tcp open ssl/pop3 Dovecot pop3d 2222/tcp open ssh OpenSSH 5.3 (protocol 2.0) 3306/tcp open mysql MySQL 5.6.41-84.1 8080/tcp open http nginx 1.14.1 8443/tcp open ssl/http nginx 1.14.1 Service Info: Host: ; OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:'' 
-PORT     STATE    SERVICE      VERSION +
-21/tcp   open     ftp          Pure-FTPd +
-22/tcp   filtered ssh +
-26/tcp   open     smtp         Exim smtpd 4.91 +
-53/tcp   open     domain       ISC BIND 9.8.2rc1 (RedHat Enterprise Linux 6) +
-80/tcp   open     http         nginx 1.14.1 +
-110/tcp  open     pop3         Dovecot pop3d +
-135/tcp  filtered msrpc +
-139/tcp  filtered netbios-ssn +
-143/tcp  open     imap         Dovecot imapd +
-443/tcp  open     ssl/http     nginx 1.14.1 +
-445/tcp  filtered microsoft-ds +
-465/tcp  open     ssl/smtp     Exim smtpd 4.91 +
-587/tcp  open     smtp         Exim smtpd 4.91 +
-993/tcp  open     ssl/imap     Dovecot imapd +
-995/tcp  open     ssl/pop3     Dovecot pop3d +
-2222/tcp open     ssh          OpenSSH 5.3 (protocol 2.0) +
-3306/tcp open     mysql        MySQL 5.6.41-84.1 +
-8080/tcp open     http         nginx 1.14.1 +
-8443/tcp open     ssl/http     nginx 1.14.1 +
-Service Info: Host: <redacted info>; OS: Linux; CPE: cpe:/o:redhat:enterprise_linux:+
-</code>+
 A number of ports here are open unnecessarily. For instance, Port 3306 is the open database port that can theoretically be exploited to inject unwanted contents to the site or, worse, the database can be erased altogether. A number of ports here are open unnecessarily. For instance, Port 3306 is the open database port that can theoretically be exploited to inject unwanted contents to the site or, worse, the database can be erased altogether.
-\\ 
-\\ 
  
-==== See Also ==== +  Left unattended or just poorly maintained, your site could be vulnerable to various harms. Here's a vulnerability scan result on our client's site before we apply the risk treatment sought: 
-  [[LMS Security]] + 
-  * [[Security Tools]] + \\ {{  :vulnerabilityscan.png?400  }} \\ Clearly this site has not been updated in a long time. moodLearning's support comes with periodic vulnerability assessments to address risks proactively. 
-\\ +
-\\+
 ---- ----
 +
 ===== Proactive Support ===== ===== Proactive Support =====
-While security is a major consideration at moodLearning, we know there's no such thing as perfect security. At times security is balanced with usability. The more features you offer, the fancier your site is, the bigger its security vulnerability tends to be. That's why we at moodLearning complements security with **proactive support** to address constant threats to our partners. 
-\\ 
-\\ 
----- 
  
-\\ +While security is a major consideration at moodLearning, we know there's no such thing as perfect security. At times security is balanced with usability. The more features you offer or the fancier your site is, its security vulnerability tends to increase. That's why we at moodLearning complements security with **proactive support**  to address constant threats to our partners' online assets. We make sure that 
-\\+ 
 +  * periodic vulnerability assessments are done 
 +  * plugins are updated 
 +  * utlization and availability are monitored. 
 + 
 +To help build a responsive site, talk to us at[[https://www.moodlearning.com/contact|modLearning]]. 
 +