Security
All Irides managed web hosting clients are protected by the Irides Dedicated Hosting Security Architecture. This comprehensive, corporate-wide security architecture is deployed to protect both our clients and ourselves. The Irides Dedicated Hosting Security Architecture incorporates a proactive defense strategy to limit the scope of vulnerabilities. Our dedicated security professionals are tasked with establishing and enforcing all Irides security policies and procedures. Irides has established strict physical and logical security measures that are delivered as part of our managed services.
- The entire Irides network, data center, and the hosted servers are protected 24 x 7 by a Cisco 4230-FE Intrusion detection system
- Monthly penetration tests are performed by the Security Auditors Research Assistant (SARA) and the results are posted in the Client Account Center Portal
- All Irides managed hosting server builds are hardened, Irides applies all relevant service packs, security fixes, and necessary performance patches
- All servers use a non-Internet routable back-end network for all administrative and backup tasks
- All non critical ports are shut down
- Secure remote access methods such as Secure Shell (SSH) are installed and configured to support encrypted, tunneled client access to the servers
- All non-encrypted remote access methods such as FTP and Telnet are disabled by default
- Irides has implemented anti-spoofing rules on its core routers to prevent external sources from claiming to be an Irides server
- Irides has applied all recent patches that affected Initial Sequence Number generation. All Irides managed operating systems will generate random sequence numbers, which makes TCP sequence prediction attacks nearly impossible to launch against our systems
- None of Irides' network equipment which interconnects our private and public networks accepts source routed packets
Irides data backup services insure against data loss due to accident, hardware failure or disaster
