Tips & Tricks Secure Joomla
Secure Joomla
Joomla is safe!! - you can heard in every forums. Is indeed safe enough? Yes, the core Joomla, if properly configured and deployed is a reasonably secure environment. The difference can be made by several factors. and first of these factors is YOU, the webmaster. But there are others, like the hosting environment, the addons used, and couple of others. Watch your back! And keep your site safe!
Choose your extensions wisely - one basic rule when you develop a Joomla site. And same applies to you, weekend webmasters! Your site is a sitting duck, waiting for hackers (especially script kiddies. Well, easy to say it, but what can be seen as "wise" choice here?
There is a surprisingly easy way to detect your Joomla version - and one don't need sophisticated tools, like BlindElephant or his siblings to do it. And this information can be used by hackers to make you scream...
Now you have one more extra reason to use Google's very useful Webmaster Tools. Recently Google added to his arsenal of Joomla related enhancements a useful one: In the Google Webmaster Tools you will see a warning with useful details on what to do each time yor Joomla site gets outdated!
Pissed off, eh? Me too! After you put together your site (small or big, hobbyist site or a large corporate one) and installed all the security gizmos available out there you began to receive all kind of alerts about hacking attempts. This is the good scenario - succesful hacking attempts usually aren't reported: you experience the sometimes devastating effects by visiting the site.
Anyway, you probably get frustrated over time, and you definitively will try to do something above just stopping these attacks.
In various blog posts, security bulletins, etc. you can read, that you need get rid of the default "admin" user with Super Administrator privileges (and with the default UserID of 62 or 42 - depending on Joomla version) to prebent hackers using the well known username and user ID to start dictionary attacks or carry out successful SQL injection attacks against your site, but how? If you go to Joomla user manager, and want to simply delete it, you can't. More, you can't even disable it! WTF...
Hey, it's not that complicated!
Let me show you how can you do it in a simple - and fool-proof way!
File and folder permissions are a key part of your Joomla site's security. It's highly recommended that you have set them properly. They should never be 777, but ideal is 644 for files and 755 folders.
More Articles...
- Block unvanted visitors using their IP address on your Joomla site?
- Enhance your security with .htaccess rules
- Keep your Joomla core up to date!
- Moving the location of admin login
- Change the default Joomla database prefix
- Secure your standalone scripts used in a Joomla site
- Move your config file outside of webroot
- Move your /temp and /log folders outside of webroot
- Server Settings
- Vulnerable extensions list
Tags cloud
... also in this category
Maintained by:
Latest Tips
Site Statistics
- Current Active Users6
- Unique Visits Today232
- Unique Visits Yesterday18
- Visits This Week1116
- Visits Previous Week1034
- Total Articles195
- New Articles This Week0
