I’m willing to start the new year by improving the security of my websites on DreamHost
Right now i have all my websites under my own user
I use the same FTP account to access all of them, and i guess it’s not a good security practice
I understand that in case one website gets hacked, all others are instantly in danger, right?
Ended up on the DH Wiki’s Security page (http://wiki.dreamhost.com/Security), especially the ‘File permissions’ paragraph
This seems to be my solution:
"A good practice is to create separate user account for each website"
But what does that exactly mean?
Guess i need to add new users (each for every website) from the control panel (‘Manage Users’ > ‘Add A New User’)
Then go to ‘Manage Domains’ > ‘Edit’ (for the website i want to assign the new user) > 'Run this domain under the user:'
And assign the newly created user, one for every domain/website
It also automatically creates a copy of the website under the new user…
Am i getting it right?
Or has that to do with creating a new DH ‘billing account’ for every website??
Thanks a lot