How to Secure Simple HTML Website

12 replies
Hi all,

I am about to launch a website which is pure HTML/CSS. The site has no backend and it isn't a shopping cart site. Just a simple content site in HTML.

I know anyone can easily download such HTML sites and was wondering if there is anything I can do to protect my website and content pages in it. I just don't want anyone to download my site.

So, is there anything I can do to secure my HTML website? I am not a techie guy so your 'detailed' response will be appreciated.

Have a good one.
#html #secure #simple #website
Avatar of Unregistered
  • Profile picture of the author yukon
    Originally Posted by ahsonwp View Post

    Hi all,

    I am about to launch a website which is pure HTML/CSS. The site has no backend and it isn't a shopping cart site. Just a simple content site in HTML.

    I know anyone can easily download such HTML sites and was wondering if there is anything I can do to protect my website and content pages in it. I just don't want anyone to download my site.

    So, is there anything I can do to secure my HTML website? I am not a techie guy so your 'detailed' response will be appreciated.

    Have a good one.


    You can't do anything.

    If someone wants your site/page/code they don't even need a browser, just the URL/s and write a few lines of code offline in an app.

    Downloaded.
    Signature
    Hi
    {{ DiscussionBoard.errors[11384824].message }}
    • Profile picture of the author ahsonwp
      Originally Posted by yukon View Post

      You can't do anything.

      If someone wants your site/page/code they don't even need a browser, just the URL/s and write a few lines of code offline in an app.

      Downloaded.
      So isn't there anyway I can have any kind of security? Like:

      1. Adding a firewall (not sure how it works or if it is even relevant to my case)
      2. Adding any security on my hosting so no 'downloads' can be executed.


      Thanks,
      {{ DiscussionBoard.errors[11384825].message }}
      • Profile picture of the author yukon
        Originally Posted by ahsonwp View Post

        So isn't there anyway I can have any kind of security? Like:

        1. Adding a firewall (not sure how it works or if it is even relevant to my case)
        2. Adding any security on my hosting so no 'downloads' can be executed.


        Thanks,
        No, not as long as it's a public webpage.

        You can block hotlinking files (ex: images, zip files, etc....) from outside domains via a .htaccess file and even use a webhost Cpanel to write the .htaccess file code for you but the files can still be downloaded like to an offline PC.

        If I'm reading this right I think you mean have a public site but stop people from downloading your HTML source code. Is that correct? If so, I don't think it can be done.

        What exactly are you trying to lock down?
        Signature
        Hi
        {{ DiscussionBoard.errors[11384836].message }}
        • Profile picture of the author ahsonwp
          Originally Posted by yukon View Post

          No, not as long as it's a public webpage.

          You can block hotlinking files (ex: images, zip files, etc....) from outside domains via a .htaccess file and even use a webhost Cpanel to write the .htaccess file code for you but the files can still be downloaded like to an offline PC.

          If I'm reading this right I think you mean have a public site but stop people from downloading your HTML source code. Is that correct? If so, I don't think it can be done.

          What exactly are you trying to lock down?
          Actually it will be a PHP site (with few HTML pages too, sorry I should have mentioned the PHP site instead of HTML site in my original post). What I want is to prevent others from downloading my website pages (one by one, OR, all at once). Just wondering if there's any security in PHP or any web hosting security features I can use to achieve this.
          {{ DiscussionBoard.errors[11384846].message }}
          • Profile picture of the author yukon
            Originally Posted by ahsonwp View Post

            Actually it will be a PHP site (with few HTML pages too, sorry I should have mentioned the PHP site instead of HTML site in my original post). What I want is to prevent others from downloading my website pages (one by one, OR, all at once). Just wondering if there's any security in PHP or any web hosting security features I can use to achieve this.

            No, not If it's a public site.

            The finished HTML source code is still easy to download.

            If it's really a concern maybe consider password protecting the pages like a membership site.
            Signature
            Hi
            {{ DiscussionBoard.errors[11384864].message }}
  • Profile picture of the author Zeyankhan
    Make the strongest passwords possible (a unique password for every account, at least 6 characters, mix letters, numbers, symbols, upper and lower case)
    {{ DiscussionBoard.errors[11384969].message }}
  • Profile picture of the author wahoowad
    One option: Use a content management system based website and deliver functionality through plugins. Then there is less code exposed.

    I would worry less about someone stealing your code and focus more on making your website service deliver something valuable where people would focus on your better content
    {{ DiscussionBoard.errors[11385071].message }}
  • Profile picture of the author romon132
    Hi,

    I've read the answers, and they have great points, but I'd like to share another safe and simple way I use to protect websites. Here you go:

    ..you should be the owner of your domain (otherwise, a person that owns your domain name can technically sell it).

    ..If your domain is registered with someone else's name, move it to your account using the instructions of Bluehost, iPage, etc (your domain provider);


    ..you should be the owner of your hosting subscription (same risk as with domain);


    ..make the strongest passwords possible (a unique password for every account, at least 6 characters, mix letters, numbers, symbols, upper and lower case);


    ..use password managers (1Password or LastPass);


    ..install an SSL certificate on your website (it protects your customer data if you have an online store, and helps to improve ranking in Google);


    ..set up two-factor authentication wherever it's possible;
    install latest versions of all the programs you use (including browser, operating system, and mobile devices);


    ..create a backup copy every month (check with your provider whether they do backups and if not do it yourself).
    {{ DiscussionBoard.errors[11385109].message }}
  • Profile picture of the author patrickvfisher
    i think there is no way to do that !!
    {{ DiscussionBoard.errors[11386034].message }}
  • Profile picture of the author ahsonwp
    Thank you for all the replies, I really appreciate it.

    So I now understand that there is nothing I can do to prevent someone from downloading my site. But, is there anyway I can protect the pages using any web hosting feature (firewall, SSL, etc.)?

    I just don't feel like agreeing that there isn't a way to protect HTML/PHP pages. lol.

    Thanks,
    {{ DiscussionBoard.errors[11386129].message }}
  • Profile picture of the author sslstoreindia
    I have read the answer and they have great points but I would like to contribute another safe and simple way to protect your website:
    • You should be the owner of your domain otherwise, a person that owns your domain name can technically sell it.
    • Use Password Manager.
    • Install an SSL Certificate on your website.
    • Set up two-factor authentication wherever its possible.
    • Install the latest version of all the program you use.
    • Create backup copy every month.

    Hopefully, i managed to explain in a Good Way.
    {{ DiscussionBoard.errors[11386543].message }}
  • Profile picture of the author scottyg
    You can use this javascript code snippet to disable right clicks on the mouse. Edit it with your URL.



    <SCRIPT TYPE="text/javascript">
    <!--
    //Disable right click script
    //visit PUT YOUR url HERE/
    var message="Sorry, right-click has been disabled";
    ///////////////////////////////////
    function clickIE() {if (document.all) {(message);return false; } }
    function clickNS(e) {if
    (document.layers||(document.getElementById&&!docum ent.all)) {
    if (e.which==2||e.which==3) {(message);return false; }
    if (document.layers)
    {document.captureEvents(Event.MOUSEDOWN);document. onmousedown=clickNS;}
    else{document.onmouseup=clickNS;document.oncontext menu=clickIE;}
    document.oncontextmenu=new Function("return false")
    // -->
    </SCRIPT>
    {{ DiscussionBoard.errors[11394913].message }}
Avatar of Unregistered

Trending Topics