Sorry, this is going to be long. I’m investigating security before I upload up my site.
There are many, many security features on the DreamHost panel. I want to be as secure as possible in uploading and maintaining my small biz website on DH. This is all new to me, and I don’t want to set up conflicting features that might even lock me out of my own site. I’m already needing to keep up with lots of passwords. And, I understand the importance of occasionally changing passwords.
If I want to upload my files (for the first time) and want to be as secure as possible without getting as technical as using a shell, isn’t the https feature already providing some security?
Also, I see that there are options in the panel under “user account type” for SFTP account - allows SFTP (SSH ftp)/FTP file transfer access. Would that make the upload more secure? Does this only work with a shell? I see that shell access is a different option so I’m guessing this does not require a shell.
There is also the “enhanced security” which seems to make sense in my situation since I’m the only official user.
Then there is the “Require email confirmation before allowing a new IP to log in to your web panel (more secure)” option under panel preferences which seems like a good thing. I assume that this means that since my local IP address is always changing (I think this is the case with my cable internet provider), I’ll get an email every time that I try to login. But, that’s OK, because if I get an email at another time that means that someone else is trying to get in… Would you recommend using this feature also?
Any simple explanations or suggestions would be much appreciated.