Security Audit


#1

Hi, can anyone advise this on DreamHost facilities n service? Tkz

  1. Conduct penetration test to identify potential vulnerabilities.

  2. For Internet facing ICT systems or websites, a network intrusion detection system must be implemented and monitored by CWC (Cyber Watch Centre), as per IM8.

  3. Ensure that applications are designed and implemented with proper input validation and sanitisation. This is critical to mitigate against Cross-Site Scripting (XSS) and SQL Injection attacks.


#2

We are just customers like you. If you are keen on security audit, I’ll suggest you to contact DH support.

DH only provides server infrastructure. Security audit on application level must be managed by the site owners.


#3

Thank you.
Then would need to find an equivalent to Cyberwatch Centre kind of Information Security Surveillance Services :slight_smile:


#4

What exactly do you mean when you say “Cyberwatch Centre”? The only thing with that name which I could find information on (cyberwatchcenter.org) is an educational foundation, not an intrusion detection system.


#5

The service
http://www.e-cop.net
but not cost effective that the website only has static display


#6

I haven’t worked with that company, so I can’t give a full evaluation, but I wasn’t able to determine what the nature of their actual security offerings was by reading their site. (Is it an auditing service, an application firewall, a network security appliance, a consulting service…?) Without that information, it’s impossible to say whether it’d be compatible (or if it would even make sense) to deploy to a site hosted by DreamHost.


#7

the local news
http://enterpriseinnovation.net/article/singapore-establish-asias-first-cyberwatch-competency-center
:slight_smile: