Joomla! has become one of the most popular content management systems and is widely used by thousands of websites around the world. The rapid growth of Joomla! Makes it a good target for hacker’s attacks. For this reason, there are some things that you should know to prevent attacks and improve your Joomla! Site’s security.
1. Choose a Good Server and Host
For a website, selecting an appropriate server and host is extremely important. If you’re using a bad host, think about changing your host supplier or using a completely separate server to avoid shared security issues.
2. Activate and Use the .htaccess File
Make sure that you change the .htaccess.txt file to .htaccess and put it in your site’s root folder. You can also add some rules to rewrite for it to prevent the possibility of unaccepted exploitation.
3. Change Your Site’s Permission and Default Administrator Account
Carefully settings permission files for CHMOD ( note that nothing must be settings to 777 which gives full rights to an account). Also, change your Joomla! Default account’s name so as to make it more difficult for hackers even if they intend to attack your website.
4. Have A Backup And Troubleshooting Plan
Remember to backup your site on a regular basis and take some time to design a plan used in case your site is attacked (prevention is better than cure).
5. Manage Your Extension Well
Keep your existing extensions installed on your site updated. Consider an extension carefully in terms of its security, its code, update version etc before installing it to your site.
6. Delete the Extension’s Version Information
By removing this type of information, you help prevent attacks since the exploitation from hackers tends to focus on the specific version of the extension.
7. Remove Unused Files
If you installed many extensions but use only some of them, you’re creating trouble for yourself. Check your site and remove all unused extensions for the sake of your website.
8. Protect Your Password
Create for yourself a good habit: Changing your password periodically with mix of upper and lowercase, special symbol, letter and number. Make sure that your database access is password protected at MySQL.
For a website, selecting an appropriate server and host is extremely important. If you’re using a bad host, think about changing your host supplier or using a completely separate server to avoid shared security issues.
2. Activate and Use the .htaccess File
Make sure that you change the .htaccess.txt file to .htaccess and put it in your site’s root folder. You can also add some rules to rewrite for it to prevent the possibility of unaccepted exploitation.
3. Change Your Site’s Permission and Default Administrator Account
Carefully settings permission files for CHMOD ( note that nothing must be settings to 777 which gives full rights to an account). Also, change your Joomla! Default account’s name so as to make it more difficult for hackers even if they intend to attack your website.
4. Have A Backup And Troubleshooting Plan
Remember to backup your site on a regular basis and take some time to design a plan used in case your site is attacked (prevention is better than cure).
5. Manage Your Extension Well
Keep your existing extensions installed on your site updated. Consider an extension carefully in terms of its security, its code, update version etc before installing it to your site.
6. Delete the Extension’s Version Information
By removing this type of information, you help prevent attacks since the exploitation from hackers tends to focus on the specific version of the extension.
7. Remove Unused Files
If you installed many extensions but use only some of them, you’re creating trouble for yourself. Check your site and remove all unused extensions for the sake of your website.
8. Protect Your Password
Create for yourself a good habit: Changing your password periodically with mix of upper and lowercase, special symbol, letter and number. Make sure that your database access is password protected at MySQL.
No comments:
Post a Comment