I recently started my own website which has a discussion forum. (MyBB.)
This forum is designed to be as another way for my family and friends to communicate and share ideas.
My intent is to keep it low profile as possible,(ie. from sight of crawlers, hackers and Google Search, etc.)
After a little research on the internet, it seems to suggests that the best place to try and keep my website is on the Deep-net or Dark-net.
I always thought that the Deep-net was a secret internet, separate from the surface internet and a place where things "behind closed doors" were conducted.
I might have been a bit right, but it really sounds like a section of the internet that the crawlers have not found yet, for one reason or another.
So I am in search for suggestions and ideas to hide my website from public view as much as possible. And protect the information on the site.
Also, I don't want to hinder registered members entry to much, discouraging them from visiting.
This is what I have so far:
Domain behind a proxy.
Linux based web host w/ developers plan,(w/cPanel)
SSL certificate, not applied yet.
Dedicated IP, not applied yet.
MyBB forum installed.
Searching for 3rd party sw/script for site password entry.
Researching the possibility for encryption of the site.
Code and website knowledge=MED-LOW.
Thank you for any help. I am kind of stumbling my way through the process, so please don't assume I know what you are talking about, lol.
Any links to articles or related threads are also welcome.
Honestly, I think that you're going a bit too far. Personally, I would:
1. Add a robots.txt file to prevent most crawlers from indexing the site. (Just search for robots.txt for more information.)
2. Set up the username and password schema on MyBB and hide every forum to users who are not logged in.
If you wanted to take it a step further, you could put the forums in a subdirectory and then password protect that directory--so that users had to log in to the directory and then into the forums. That way, a non-logged-in user wouldn't even know that you had forums installed. You could then also redirect the main directory somewhere else--such as to google.com--so that if someone typed in your domain without the subdirectory, they would be taken elsewhere.
Hope this helps.
▒ Richard C. Hay - Hallandale Beach, Florida
▒ 15+ Years: Experienced, Professional, Timely Graphic Design and Application Development Services
▒ Portfolio: richardhay.com - Email: firstname.lastname@example.org - Telephone: (954) 573-6937
Thanks, This is the information I was looking for.
I have taken a few of the steps mentioned, such as putting the forum in a sub-directory. I think I can rename the containing folder easily enough.
And I deleted the register.php file.
I will follow through with the robot.txt upload. I didn't know anything about this, thanks for the heads up.
A couple of questions for my clarification.
hide every forum to users who are not logged in.
Set the forum to private
Are you referring to user permissions? I have blocked guests from everything I could find, but they still see the forum name, board statistics, and the shout box plugin.
Is this just the way it is or have I missed a step in the configuration?
Or should there be a master switch that turns the forum to "private"?
Password protect the main folder (which should then apply the folder as well)
Right now my main folder is empty and is structured like this: website.com/forum/
I have asked the web host(Surpass) and cPanel about a password for users entry.
I was told that is handled by third party software. She also suggested I check out WHT for advice.
Would something like WordPress (installed in the main folder), have the tools I need for password entry? Or do I look in a different direction for the solution?
Create a google webmasters account,
I will follow this lead too. But I was wondering if I need to set up one with all the major search engines, or will the google one take care of everything?
Well first off if you want this to be secret, you don't want to use a shared hosting provider.
Steven Ciaburri | Proactive Linux Server Management- Rack911.com System Administration Extraordinaire | Follow us on twitter:@Rack911Labs Managed Servers (AS62710), Server Management, and Security Auditing. www.HostingSecList.com - Security notices for the hosting community.