Is your site secure? You may chuckle at the anecdote below,.. but you’d be surprised at how often this happens. Make sure to safe-guard all backend entry into your site with a secure username and password. If I can hack into your site,.. then so can the REAL hackers.
I built a simple brochure website for a business-to-business client. They approved the final version on the test server, so I asked for the FTP password to move it into place. They refused, citing security concerns. I argued that a web developer is a bit like a car mechanic: you have to trust them with the keys to your car. No go. So I sent them the entire website as a .zip file. They could not figure out how to upload it, so they gave in and emailed me.
The FTP password for this security-conscious company turned out to be 12345678.