Overview

  1. PHP Containerisation: Enhance isolates each user's website in a separate PHP container, ensuring that processes within a website can’t access files outside its own container. This isolation protects against cross-site infections within the same subscription. SSH and cron jobs also run inside the same container. However, it doesn't protect against vulnerabilities in the website's code, so CMS software and plugins should be kept up-to-date.

  2. Role Containerisation: All roles, including email system components, are containerized on Enhance. These containers cannot access website files, even when the application role is on the same server.

  3. User/Permission Access: Enhance runs all operations (e.g., WordPress tasks) under the website's user account, not as root, ensuring security by limiting permissions.

Was this answer helpful? 0 Users Found This Useful (0 Votes)

Most Popular Articles

ModSecurity

ModSecurity Overview Enabling ModSecurity on a Webserver: ModSecurity can be enabled on...
Brute force protection

Brute Force Protection Brute force protection helps secure accounts from login attacks, such as...
Prohibited Domains

Prohibited Domains Enhance allows you to prevent users from creating sites and subdomains with...