Overview
This article provides answers to common security questions at DreamHost.
General security questions
Does DreamHost offer any type of built-in security?
-
Yes. You can enable extra security under each domain in the panel.
Does DreamHost offer any type of malware scanning service?
-
Yes. You can enable DreamShield for any domain in the panel.
Is DreamHost HIPAA compliant?
-
DreamHost is not HIPAA compliant.
The Health Insurance Portability and Accountability Act (HIPAA) was created to establish national standards for protecting medical records. More specifically, the Security Rule specifies standards to protect electronically transferred health information. The Security Rule requires appropriate administrative, physical, and technical safeguards to ensure the confidentiality, integrity, and security of electronically protected health information. Further information can be found at the U.S. Department of Health & Human Services website.
Panel security
Does the panel offer Multifactor Authentication?
-
Yes. You can protect your login credentials to your panel using the Google Authenticator app or a YubiKey. See this article for further details.
Is there a way to assign panel access to different users?
-
Yes. You can assign individual users access to the panel and decide which features they can access.
I host multiple domains, some of which are for my clients — Is it possible to allow them to manage their domain(s) without providing them with my web panel information?
-
Yes. You can use Account Privileges to set up a secondary web panel login and grant permissions on specific domains, databases, users, and so on. The secondary login only has access to what you grant it. Keep in mind that just because they can manage a domain or if you grant them access to billing, only the primary account user receives notifications on expiring domain registrations or hosting renewals.
SSL certificates
Does DreamHost offer SSL certificates?
-
Yes. When setting up an SSL certificate, you can purchase a professionally signed certificate or add a free Let's Encrypt certificate. See this article for further details.
Can I use a third-party SSL certificate at DreamHost?
-
Yes. You have full access to install this in your panel. See this article for further details.
Are wildcard certificates supported?
-
No. You must install a unique certificate for each of your domains.
Can I use a single SSL certificate for multiple domains?
-
No. This is also considered a wildcard certificate, as mentioned above.