Hi Gepetto,

Well that is a good move. Check the new hosting will have security in mind, that is server hardening, not revealing excessive header information to potential attackers, good http cookie security, check against clickjacking issues. etc.

Example: Another way to pentest on your own website is make a html page with this code:


Code: [Select]

<html>
  <head>
    <title>Clickjack test page</title>
  </head>
  <body>
    <p>You’ve been clickjacked!</p>
    <iframe sandbox="allow-scripts allow-forms" src="http://samslobsterbakes.com :8080" style="width:100%;height:90%"></iframe>
  </body>
</html> 

Code credits go to ITSecurity’s lakshmi Prudhvi * yoursite = main url of site e.g. www dot mysite dot com
Whenever vulnerable and opened in the browser you see: “You have been clickjacked!”

Well stay safe and secure and you know now where to find us,

polonus

P.S. Do not test until site is no longer flagged by avast else the avast File Shield will block clickjackingtest immediately and remove before it even could be written in notepad!
So the avast shields do a perfect security job here,

Damian