10 best Web Hosting companies – Plans & Pricing 2019

# 1


hostgator logo

HostGator is the largest shared hosting service provider in the whole world. There are good reasons for which millions of clients host there websites with HostGator. There service quality and support is superb and that is what set's them apart from others. Following are their Shared hosting packages:

shared hosting packages of hostgator

Besides Shared hosting - HostGator offers: Cloud Hosting, WordPress Hosting, VPS & Dedicated Servers.

# 2


siteground logo

SiteGround is popular hosting service provider which is known for its rock solid services and unbeatable support. Their shared hosting packages are as follows:

shared hosting packages of siteground

 

Besides Shared hosting - SiteGround offers: Cloud Hosting, WordPress Hosting and WooCommerce Hosting.

# 3


siteground logo

Eleven2 is a US-based web hosting service with a global presence. It was founded in 2003 and its office address is in Los Angeles. Eleven2 offers two types of shared hosting - Shared hosting with Standard storage and Shared hosting with SSD. Eleven2's shared hosting packages are as follows:

shared hosting packages of eleven2
SSD shared hosting packages of eleven2
Eleven2 Offers other services like: Reseller Hosting, SSD Reseller Hosting, Virtual Private Servers and Cloud Hosting.

# 4


bluehost logo

Bluehost is a web hosting company owned by Endurance International Group. It is one of the 20 largest web hosts, collectively hosting well over 2 million. If you are looking for a good web hosting company, you have probably heard of Bluehost. They are a popular and quickly growing web hosting company. BlueHost's shared hosting packages are as follows:

shared hosting packages of bluehost

Bluehost Offers other services like: Cloud Hosting, WordPress Hosting, Virtual Private Servers.

# 5


ipage logo

iPage is a popular web hosting platform for a very big number of websites. It is one of those inexpensive hosting providers who provides quality hosting services with great support. iPage shared hosting packages are as follows:

shared hosting packages of ipage

iPage Offers other services like: Dedicated Hosting & VPS Hosting.

# 6


justhot logo

JustHost is a simplified hosting provider which provides hosting packed with a lot of features - backed by their extremely good support. JustHost shared hosting packages are as follows:

shared hosting packages of justhost

JustHost doesn't offer any other services - but they do offer useful marketing tools (Google Ads credit) to get started well.

# 7


7uphost logo

7upHost is global web hosting service provider operating from Bangladesh. Established in 2008 it has been serving clients from all over the world. They offer rock solid hosting with a friendly support. 7upHost shared hosting packages are as follows:

shared hosting packages of 7uphost

7upHost offers all kinds of web hosting besides shared hosting: SSD Hosting, Reseller Hosting, Virtual Private Server, Dedicated Server, Managed AWS Hosting, Google Cloud, GSuite and Professional Email Hosting services.

# 8


A2 Hosting logo

A2 Hosting is much talked web hosting service provider now a days for their diversified hosting services. Their shared hosting packages are as follows:

shared hosting packages of A2 Hosting

A2 Hosting offers a variety of services like: WordPress Hosting, Reseller Hosting, Virtual Private Server, Dedicated Server.

# 9


DreamHost logo

DreamHost is one of those veteran web hosting providers still popular across the globe. Their shared hosting packages are as follows:

shared hosting packages of dreamhost

Other Services by DreamHost: Cloud Hosting, Virtual Private Server, Dedicated Hosting.

# 10


GreenGeeks logo

GreenGeeks is wellknown as an environment freidnly hosting service Provider. Their datacenters are powered by renewal energy sources. They are also reputed for their incredible hosting services and support. Their shared hosting packages are as follows:

shared hosting packages of greengeeks

GreenGeeks offers a variety of web hosting solutions, including shared hosting, reseller hosting, virtual private server hosting and dedicated Hosting.

Whitelist IP or IP range in/out using iptables

#Flush existing rules
iptables -F

# Set up default DROP rule for eth0 (Assuming eth0 is the Ethernet Port)
iptables -P INPUT DROP

# Allow existing connections to continue
iptables -A INPUT -i eth0 -m state –state ESTABLISHED,RELATED -j ACCEPT

# Accept everything from the 192.168.0.x network
iptables -A INPUT -i eth0 -s 192.168.0.0/24 -j ACCEPT

# Allow connections from this host to 192.168.1.10
iptables -A OUTPUT -o eth0 -d 192.168.1.10 -j ACCEPT

GMail Phishing scam – Becareful !!

If you are a tech savvy person – you probably know how phishing works. However, this time attackers tried to use optical illusion to trap people into a new phishing scam targeting the GMail users. Here’s how it looks like:

gmail phishing scam URL

Scammers attach an image which looks like it is an attachment. When you click on it – it takes you to the scammers destination – to the phishing link. And if you ignore the login URL – you are DONE!!

The phishing login page has been tricked as well to look like it is from Google. So even the most savviest person may fall for the trick. Here is how the phishing page URL will look like:

gmail phishing scam data url

Img credit: The Hacker News

 

So, next time you are forwarded to any login page – double – triple check.

You may find more about it in this link.

Restrict Search Engines from finding your website

While everybody is busy getting their website more and more exposed to the search engines (SEO) – you might want to restrict search engines to crawl your website.

You may have your own development website or may have your company’s web based HR system – which you don’t want to expose to the world. Search Engines will find your website if you do not restrict them. If you want to restrict the complete website just upload a file named “robot.txt” in the root folder and add the following line in it:

User-agent: *
Disallow: /

If you want to restrict a specific part (files in a specific directory) – add the following line:

User-agent: *
Disallow: /yourdirectory

If you want a certain Search Engine to be restrcited – (for example Google): add the following line:

User-agent: googlebot
Disallow: /yourdirectory

Some of the other Search Engine Bots are as follows:

MSN/Bing: bingbot
Yahoo: Yahoo Slurp (Currently using bingbot).
Baidu: Baidu Spider

How to Clear bash / SSH / Terminal command history in Linux

You might need to wipe off the command history that you’ve executed in your linux system for various reason. Normally when logged into the bash / SSH terminal – if the Up Arrow key is pressed – previously executed commands are shown. To completely delete the history type the following command:

# history -c
# history -w

 

How to remove Malware from WordPress sites

WordPress has made the web designers’ lives easier. It has reduced the web development time & cost drastically. The CMS is so powerful that more and more people are converting/migrating their sites to WordPress. With ease comes the danger of being compromised. If compromised – your site will not function properly. It may leak your confidential information, give access to spammers and use your hosting account for spamming, give access to hackers who may upload files to run phishing attack.

Let us first know why a wordpress website gets hacked – gets infected to malware.

WordPress website becomes vulnerable due to the following reasons:

1. WordPress is not updated
2. Plugins are not updated
3. The administrator username passwords are too easy.
4. The computer used to administer the wordpress site (Admin area & cPanel/FTP) is itself infected to viruses.
5. Use of nulled / pirated templates or Plugins – in which codes are embedded which gives the hacker the access.
6. Presence of other hacked script/website in the same hosting account.
7. Unsecured Web hosting. (Poorly configured server, easy guessable passwords etc).

How to identify your WordPress website is hacked or have malware in it?

The website will start behaving abnormally. The website may go blank, break or become very slow. The hackers may get access of your web hosting account and may upload their own scripts and start spamming or create phishing pages. Your web hosting account will be exhausted and your hosting company may suspend your account for resource over usage and spamming. These are some of the symptoms your WordPress is being hacked. If you dig deeper and want to be sure – you need to check the files of your WordPress system. You may find unknown folders (Directories) and files. That’s not it!! Many of the php files (Mostly theme & Plugin files) may contain malicious code in those.

How to clean the WordPress website:

1. First and most important step is – make your computer / work station secured. This includes – having a very good antivirus / Internet security system. Get one (Kaspersky, Bitdefender, AVG, Norton … bla bla bla) if you do not have it yet. Make a full system scan and get rid of any threats (viruses, Trojans).

2. Download the WordPress website in your computer (using FTP or Control panel File Manager). To reduce the time – you may Zip (compress) the full site if you have a control panel in your hosting and if it allows compressing.

3. Extract the folder – if you’ve downloaded a zip copy. Keep the zip file as backup and do not delete it – so that you can use it if anything goes wrong when you try to fix the site. Take a backup of your database too. Now, go into the extracted WordPress folder.

4. The next part is cleaning the malicious code. This is a bit tricky part. There may be hundreds of hundreds of files which may contain malicious code (hacker embedded code). Mostly the php files in the Themes and plugins get infected. But php files in other directories may get infected to. I will show you a trick which will help you get rid of these codes within few seconds.

a. You’ll need Adobe’s Dreamweaver tool or something with similar features. You can download Adobe Dreamweaver Trial from this link.

b. Now you need to find a file which contains malicious code. Go to the active theme folder under “wp-content” >> “Themes”.. Then open the index.php file using Dreamweaver. The malicious code should be either at top or at the bottom and should look like this:

malicious code in wordpress php files

Malicious Code

All the infected files should contain the same code. If you carefully look in the picture above you’ll notice that the malicious code starts and ends with “//###==###”. The code can vary from what you see in the above picture – but it will be something like this. You’ll need to remove this chunk of code from all the files.

Copy malicious code in wordpress php files

Copy Malicious Code

c. You have to use the Find & Replace function in Dreamweaver. Copy the malicious code (starts and ends with “//###==###” in this case). Now press “CTRL + F” and the Find & Replace option should appear.

d. Paste the malicious code in the “Find” box and keep the “Replace:” Box empty. Now you have to choose “Folder..” option from the drop down menu “Find in” and “Source Code” option from the drop down menu “Search:”.

search and replace malicious code in wordpress php files

Find and Replace malicious code with empty box

Now you have to choose the search Destination Folder:

search and replace malicious code in wordpress php files in destination folder

Selecting the folder in which it will search for malicious code.

Choose the root directory of wordpress site from your local machine. Now press the “Replace All” as shown in the “Find and Replace malicious code with empty box” image. This will wipe off the malicious code from all the files. Now you need to save all the files from “File”>> “Save All” option. You are done with Malicious code removal!! Congrats…

5. The next step is cleaning all the hacker uploaded folders. Your basic wordpress website should have 3 folders in the root folder. wp-admin, wp-content and wp-inlcude. You might have a look at other folders in the root directory and consider removing those if you are sure those doesn’t belong to your website. You can replace all the files and folders from a fresh copy of WordPress except the wp-content folder and wp-config.php files. Remember, If at any stage the website breaks – you have the zip file (mentioned in step 3) as backup.

6. Now you’ll have to prepare your hosting account for re-uploading the cleaned website.
a. The first thing you need to do is – delete all the files of your wordpress site from your hosting account.
b. Change the password of your hosting accounts and change the password of any other FTP accounts in that hosting account.
c. Upload the cleaned WordPress files.

7. After re-uploading the site if it runs properly do the following:
a. Update the wordpress to the latest version.
b. Remove any unnecessary plugin. If you are unsure about which ones are unused – you may skip this step.
c. Update all the plugins & Templates.
d. Change WordPress username and password to a complex one. Do not keep “admin” your username.

8. You need install some third party plugin to harden the site security. For example, you may consider installing ALL IN ONE WP SECURITY & FIREWALL. It will require me to write another similar post to describe the features and performance of this plugin – For now, let me assure you that this is one plugin which will make your website very secure.

all in one wp security and firewall for wordpress protection

It will show you, protect your site and will keep your sites and plugins updated automatically. It can also change the admin directory of your wordpress site changing the admin login link– which will reduce the Admin login attack in your site. There may be other similar plugins with same functionalities. You need to implement this kind of plugins to make and keep your site secured.

9. Take help from professional WordPress malware solution provider: You can take help from professionals who provide WordPress malware removal solutions. WPMalwares is such a provider. These guys are wordpress security specialists and can solve your problem at a very low price. You can save your time for something more important and leave your headache to these guys. They will fix your site and will provide you free support for one year. Moreover, they will add extra layers of security on your website.

wpmalwares.com WordPress Malware removal

For details – please visit:  WordPress Malware removal

Feel free to comment if you think I have missed any point or if there are better ways to clean and protect wordpress websites. I will include your suggestions in the main post with your name and link.

wp-goodluck!! 🙂

How to find the IP addresses of a Linux system

The following command in a linux based system will show all the IPs assigned to that system:
# ip addr show

Or alternatively, if you’d like to know the IP address(es) of a certain port (for example eth0) type the following:
# ip addr show eth0

Sample output:
eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
link/ether 00:30:67:b4:b7:4d brd ff:ff:ff:ff:ff:ff
inet 72.144.122.10/29 brd 72.144.122.15 scope global eth0
inet6 ef80::120:67ef:deb4:f74e/64 scope link
valid_lft forever preferred_lft forever

The IPv4 assigned to the system are: 72.144.122.10/29  (72.144.122.10 – 72.144.122.15 = 6 IPs)
The IPv6 assigned to the system are: ef80::120:67ef:deb4:f74e/64