At PowerDNN, we do not view security as a product, a feature, or an add-on. Security is the process of creating a reliable chain of trust from one system to another. At PowerDNN, our chain of trust consists of four things: Networks, Servers, Websites, and DotNetNuke.
Networks
To protect our network, we implement redundant Juniper Netscreen Layer 2 firewalls that act as a "filter" against known bad data. Our CISCO routers use core BGP routing protocols which let us route traffic around unreliable places on the internet. We also use MyNetworkWatchman along with in-house intrusion detection systems to detect and prevent unauthorized network traffic.
Servers
In addition to our network based hardware firewalls, each server has a software based firewall installed that allows us to fine-tune the server's configuration for exactly the customers on the server. Access to all of our servers is managed through a domain authentication server which gives a single "security checkpoint" for logging into servers.
Websites
To protect customers' websites, each and every website that we host is run in a private, dedicated application pool with its own "httpdocs" (also know as "wwwroot") folder. This lets us completely separate the execution of all websites. Taking this a step further, each application pool runs under its own, private windows user account that only has access to its own files. This lets us completely separate the access of all websites.
DotNetNuke
As the most visible link in the PowerDNN chain of trust, DotNetNuke itself is one of the most important links. In order to protect your DotNetNuke website, we monitor IIS webserver access logs for module attack fingerprints. Additionally, we stay in close communication with DotNetNuke Core Team regarding any and all DotNetNuke security issues. We even offer DotNetNuke update services so we can immediately patch your website in the case of a security vulnerability.