Website security

[Steve T]

i built a substantial manufacturing website with the Wix website builder using a blank template, so in essence, a site that i can hopefully have copied by a proper website professional who knows what he is doing.
This thing is exactly what i want it to be visually and the text content is as i would like it to be but i have absolutely no knowledge of website security. I am now almost ready to launch the site live and just wonder how secure this type of off the shelf website builder is. Can they be hacked easily?, how confident should i be in the security in general of Wix?.
All payments are by paypal only and no information other than a postal address is required for people to do business with us.
I don't feel confident that i understand enough about website security and my next and final stage is terms and conditions, terms of use, Website accessability etc.

What a bloody minefield

 

[neil_g]

I doubt any easier than any other website.

Complex passwords are your friend.

 

[frank]

I'd agree with Neil on passwords, I've started using phrases now in local lingo a few words long instead of a single word. Ok a pain in the bum putting a long phrase username and password in but its better than giving the hacker a easier time and easier than restoring backups. So far so good

 

[KIPAX]

hackers rarely use passwords to hack a website.. poorly designed server side scripts are a hackers main front door.... you can leave paypal to there own security problems.. as for the website i doubt theres anything so unsucure in a builder or they would know by now.. you cant use bog standard html to hack a website..


One thing everyone should be aware of.. there is no such thing as secure on the internet.. only varying levels of secure..

 

[neil_g]

Indeed. Given enough time everything is hack able.

 

[st599]

It's rarely a password hack. It's more likely input boxes which don't check the contents and end up allowing executable instructions through

 

[Steve T]

Thanks for the replies guys, sorry to be late getting back, I forgot i posted this. Thanks for the comments, I will definately go to town on my passwords as you suggest Neil, I can't find any examples of Wix sites being less secure than any others so unless there is anything else i can do to increase security i will call it done.

I've done my terms and conditions from a template that i customised but its the privacy thing that I'm struggling with now. The EU Cookie law and how to inform people visiting the site is doing my head in. I've created a blank ready to go popup on the homepage which i understand is the most upfront way to comply but I don't know what cookies are being collected by wix or google in the first place and thats the main problem I have. Is it necessary to say precicely what cookies your website collects?

Looking for a simple nonce friendly, minimal complexity to add, compliance notice template or the relevent text to use.

On a side note, the wix builder is a fantastic and simple thing to use, and the blank template is a brilliant way to start a unique site. But because I have no confidence in my tech skills, i will still get it copied by a pro for peace of mind.

 

[Phil V]

There's a plugin for Firefox that shows which cookies run on your site, but frankly it's a badly written 'rule' anyway and I wouldn't worry too much about dotting your i's unless you're writing your own cookies and farming data for sale.

 

[Steve T]

Cheers Phil.