Combell Shield

Application

• Web filter: Every incoming request to your website is checked by Combell Shield. Malicious code or common infections are automatically blocked. Protection against SQL injection, rootkits and brute force attacks are also included. This configuration can be changed for each website via My Combell.
• Scanner: Combell Shield automatically scans your entire website looking proactively for security flaws and risks. The control panel provides an overview of the vulnerable files, which you can fix with a single click – this is what we refer to as patching. If you want, we can always do this for you via our “automatic patching” service.
  In addition, we also scan for malware, like an antivirus would do on your computer. Infected files are automatically deleted from our systems. In case of doubt, the file is quarantined and checked manually by a Support Engineer.
• Critical Patching: Many customers use a content management system (CMS) such as WordPress, Drupal or Joomla!. However, updates to the latest version are not that frequent, which poses significant security risks. This is why Combell automatically takes action when a critical update is available. Of course, you still have to follow this up yourself; you should not wait for us to send you a reminder about a critical update to keep your software up-to-date.
• Jailing: We make sure that the ‘jailing’ principle is applied at the level of the application in order to guarantee you an isolated environment on which you can run your applications. This way, other customers will not bother you or present security risks.
• Logging tools & IP blocking: We analyse logs and automatically block requests from untrusted IP addresses, user agents (bots),etc.

Operating system

• Jailing: We make sure that the ‘jailing’ principle is applied at the level of the operating system in order to guarantee you an isolated environment. This way, other customers will not bother you or present security risks.
• Automatic patching: The operating system comes with automatic patching. This way, you can always use the latest version of the software, which significantly reduces the risk of security problems.
• Firewall: The firewall also works at the level of the operating system. The firewall settings are adjusted to the services provided by each server.

Network

• DDoS security: Combell provides 24/7 efficient protection against DDoS attacks. Our engineers constantly monitor the various requests on the hosting platform and make sure that DDoS attacks are thwarted in time.

• Physical firewalls: Our physical Juniper SRX3400 firewalls provide the best protection against outside attacks. A single machine can process more than 175.000 requests per second and provides protection against all sorts of attacks, like SYN or UDP floods. These firewalls are connected to our core network via multiple 10-Gbit connections and are in two different physical locations.

Data centre

• 24/7 onsite security: Our Tier 3+ data centre is monitored 24/7 and is subject to strict access control with constant physical and video surveillance.
• Strict access control: Customers or suppliers are only allowed to enter our data centre when accompanied and after prior screening and registration. In addition, only a limited number of Combell collaborators have permanent access to our data centres.