Security Practices at viswath.me
At viswath.me, I take your safety and privacy seriously. Here are the core security measures I have implemented on my website:
-
Secure & Hardened Hosting
The site is hosted on Hostinger, which provides real-time malware scanning, a server-side firewall, and automated updates to defend against known threats.
-
Secure & Fast Asset Delivery
All static files (images, CSS, JS) are served via Cloudflare R2 and a CDN subdomain
cdn.viswath.me, improving speed and security. -
Cloudflare Security Shield
Cloudflare protects this site with DDoS protection, bot mitigation, and full TLS encryption. Page Rules and firewall rules block suspicious activity before it reaches the server.
-
HTTPS Encryption
All pages are secured with HTTPS via SSL, ensuring that all data between your browser and this website is encrypted and tamper-proof.
-
DNSSEC Enabled
DNSSEC is enabled for this domain to prevent DNS spoofing and ensure that your browser connects to the genuine viswath.me server.
-
Secure Email Authentication
I use SPF, DKIM, and DMARC to protect my domain from email spoofing and phishing attempts. This makes sure only authorized servers can send emails on behalf of viswath.me.
-
Web Application Firewall (WAF)
Cloudflare’s WAF filters traffic, blocks threats, and protects sensitive routes using rules and challenge pages.
-
Bot Protection & Browser Integrity Check
Browser integrity checks and bot management tools block automated scripts, credential stuffing, and suspicious crawling behavior.
-
Performance Hardening
Features like Brotli compression, minified assets (JS/CSS/HTML), and CDN-level caching speed up load times and reduce attack vectors.
-
No Vulnerable Plugins or CMS
This is a custom-built portfolio site — not based on WordPress or any CMS — which reduces exposure to common plugin vulnerabilities. For blog management, I use the Google Blogger REST API as a headless CMS, ensuring greater control and security.
-
Spam Protection with Cloudflare Turnstile
To protect our contact forms from spam and bots, we use Cloudflare Turnstile — a modern CAPTCHA alternative. It verifies real users without annoying puzzles or clicks, ensuring smooth interaction for genuine visitors while blocking suspicious or automated submissions.
-
Optimized Image Delivery
To reduce website load times and enhance user experience, all images hosted on the local server have been converted to WebP format and efficiently delivered to clients. Additionally, Cloudflare Reserve Cache has been enabled to improve image caching and overall performance.
Your trust matters. This page is updated whenever new security measures are implemented. If you have any concerns, notice an issue, or would like to run a test, feel free to contact me.
- Email: [email protected]
- Phone: +91 7815868014
- Contact form: Click here