Application and Network Security

Several standard procedures are followed to ensure the security of the Magnify.net service.

Physical Security

All server equipment operates within a locked cage in a continuously-staffed network facility.

Physical access to the server equipment is limited to four employees of Gossamer.

Incremental backups are maintained within the secure area of the server facility.

Network Security

All network traffic is filtered through a firewall using the Linux "iptables" software.

There is a Cisco "Guard" DDoS mitigation appliance attached to the network which can be deployed when needed.

Network traffic is routinely monitored for security problems with the "Snort" IDS.

Periodic penetration and vulnerability testing is performed with the "Nessus" scanner.

Server Security

Magnify's administrative access is over encrypted connections with SSH and SFTP.

Gossamer senior staff regularly review security advisories and software releases and promptly install relevant patches for the operating system and server software we use.

Application Security

All passwords, including both regular users and for site administrators, are encrypted via MD5 before being stored in our database, so there's no practical way to recover the user's original plain-text password.

Each affiliate's user accounts and contents are kept distinct from the others and are clearly labeled in our database to associate them with a specific site.