B o o t i n g

Security Practices at viswath.me

At viswath.me, I take your safety and privacy seriously. Here are the core security measures I have implemented on my website:

  • Secure & Hardened Hosting

    The site is hosted on Hostinger, which provides real-time malware scanning, a server-side firewall, and automated updates to defend against known threats.


  • Secure & Fast Asset Delivery

    All static files (images, CSS, JS) are served via Cloudflare R2 and a CDN subdomain cdn.viswath.me, improving speed and security.


  • Cloudflare Security Shield

    Cloudflare protects this site with DDoS protection, bot mitigation, and full TLS encryption. Page Rules and firewall rules block suspicious activity before it reaches the server.


  • HTTPS Encryption

    All pages are secured with HTTPS via SSL, ensuring that all data between your browser and this website is encrypted and tamper-proof.


  • DNSSEC Enabled

    DNSSEC is enabled for this domain to prevent DNS spoofing and ensure that your browser connects to the genuine viswath.me server.


  • Secure Email Authentication

    I use SPF, DKIM, and DMARC to protect my domain from email spoofing and phishing attempts. This makes sure only authorized servers can send emails on behalf of viswath.me.


  • Web Application Firewall (WAF)

    Cloudflare’s WAF filters traffic, blocks threats, and protects sensitive routes using rules and challenge pages.


  • Bot Protection & Browser Integrity Check

    Browser integrity checks and bot management tools block automated scripts, credential stuffing, and suspicious crawling behavior.


  • Performance Hardening

    Features like Brotli compression, minified assets (JS/CSS/HTML), and CDN-level caching speed up load times and reduce attack vectors.


  • No Vulnerable Plugins or CMS

    This is a custom-built portfolio site — not based on WordPress or any CMS — which reduces exposure to common plugin vulnerabilities. For blog management, I use the Google Blogger REST API as a headless CMS, ensuring greater control and security.


  • Spam Protection with Cloudflare Turnstile

    To protect our contact forms from spam and bots, we use Cloudflare Turnstile — a modern CAPTCHA alternative. It verifies real users without annoying puzzles or clicks, ensuring smooth interaction for genuine visitors while blocking suspicious or automated submissions.


  • Optimized Image Delivery

    To reduce website load times and enhance user experience, all images hosted on the local server have been converted to WebP format and efficiently delivered to clients. Additionally, Cloudflare Reserve Cache has been enabled to improve image caching and overall performance.



Your trust matters. This page is updated whenever new security measures are implemented. If you have any concerns, notice an issue, or would like to run a test, feel free to contact me.

Support me