So my site was down for the last 24 hours - and throug no fault of my own. I logged on to to find my homepage had been replaced with a phishing site and that I no longer had FTP access or SSH! By tracking the data from where it came from, I found that my DNS had been hijacked and that it was pointing my domain to somebody else’s server. Not good news at all. But here we are, 24 hours later. It turns out that the owners of my domain reparked it as a mistake, so no hacking occurred, just a simple data confusion!
So for added security, I have added some extra .htaccess rules and chmodded any weak folders, updated my password to a crazy length, altered a few MySQL parameters and disabled all FTP users except two. I don’t seem to be paranoid enough these days!