Tips to secure your Joomla

Andre

Andre

New member
Joined
Aug 13, 2012
Messages
146
Points
0
If you are using Joomla to manage content, you need follow some short tips to secure your CMS anti hackers.

Update your Joomla installation to lastest version immediately after Joomla released a new version.

Chmod for files on server depend each folder. file permissions need to be set correctly.

You should change database prefix instead of default.

Install a backup component and backup your system.

Update your newest extensions when you installed Joomla.

If you are having any problems, feel free to drop me replies here.

Thanks
 
G

George Hiner

New member
Joined
Jan 24, 2014
Messages
20
Points
0
Check for Update of Joomla installation to upgrade version immediately after Joomla released a latest update. regularly check for Joomla extension.
 
JuanRoth

JuanRoth

New member
Joined
Oct 3, 2013
Messages
51
Points
0
Update your joomla regularly to the latest threats. Update your newest extensions when you installed Joomla.
 
Wintersmith

Wintersmith

New member
Joined
Mar 17, 2014
Messages
7
Points
0
Andre said:
chmod for files on server depend each folder. file permissions need to be set correctly.
Install a backup component and backup your system.

Thanks
Click to expand...
Since I'm a long time J! user I'd like to drop in couple tips when it goes CMS security.
Of course I fully agree with already mentioned things, as there are never enough security steps taken ;)
1. protect /administrator directory with all possible ways you can. Use htaccess (htpasswd) to protect this directory, or hide it. 3rd party plugins may become vulnerable, and you won't notice that.

2. After you end up developing the site, and before launch day, uninstall all unused extensions/plugins/modules, and delete their remains. If you leave a development version for further testing, close public access to it, as it will become sooner or later an abandoned instace and as such exposed for future to come exploits. In most cases data used in such instances is the same, as the production services...

3. disable unused, default J!'s plugins. You really do not have to leave for example search or frontend login plugins enabled for a small business_card_type of website with 4-5 pages on it.

4. when it goes to backups (I assume Andre had akeeba ext. on his mind), move backups to directory which cannot be accessed from browser.

5. I have bad expreiences with J!'s media manager, as it is still (in v3.2) a leaky default extension. I suggest to block a complete access to it and use 3rd party extension for multimedia files management.

That's all as for now ;)
 
You must log in or register to reply here.
Older threads
iisbetoq
What's New Button
Replies
2
Views
4,291
iisbetoq
iisbetoq
Yay, i'm in webmastersun
Replies
5
Views
3,713
BloodMaster
Jack London
Best traffic exchange methods ?
Replies
8
Views
4,522
Ric
R
How can I use Facebook to advertise my blog?
Replies
10
Views
6,200
susansmith001
Tommy
How to get more Views for Youtube video
Replies
2
Views
3,747
george3297
Newer threads
Andre
Tips for making money with Chitika
Replies
1
Views
2,724
deven75
Tommy
How to choose keywords for product websites
Replies
3
Views
6,606
diliberti
Tommy
When Do You Need A Dedicated Server?
2
Replies
22
Views
13,036
ChadTrejo
Tommy
Server Web Hosting - Should Rent or Buy?
Replies
8
Views
5,888
Mark I. Bentz
I
Hello Everyone!
Replies
3
Views
2,457
Top Niche Websites
Latest threads
AndyHunter
First letter
Replies
1
Views
108
hipcat
hipcat
Are Ubersuggest Stats Usually Wrong?
Replies
0
Views
118
hipcat
harshitasoni
Link Exchange!
Replies
0
Views
169
harshitasoni
whitney wright
increase traffic on websites
Replies
5
Views
434
da analayzer
AezaHosting
HOT Aéza — cloud servers from 0.02€/hour with AntiDDoS protection
Replies
3
Views
360
AezaHosting
Recommended threads
christax
Should you use ebooks or online sites to learn programming?
Replies
3
Views
1,770
AdrianneG
art247
Why Shared or VPS hosting downtimes?
Replies
4
Views
3,425
digitalConnect
rfharris
Which SEO Tools Are You Currently Using?
2
Replies
23
Views
7,660
sweetsdailyupdates
timothykiko
Drag and Drop Software Builder?
Replies
6
Views
3,827
elzorro
B
how to get rid of www.googleadservices.com in my adwords url
Replies
4
Views
3,911
harrygreen90
Similar threads
Farris
Do you find it hard following tips?
Replies
10
Views
1,899
profitnest
Lonika
Tips for starting a forum?
Replies
4
Views
2,120
Marc van Leeuwen
Nemanja
Tips for Building a Fast and Mobile-Optimized Website?
Replies
1
Views
1,248
hipcat
CyberAlchemist
Tips to Secure WordPress
Replies
5
Views
2,580
Hawker
Jack London
5 easy tips to keep your WordPress website secured
Replies
8
Views
3,780
never-sleep

Latest postsNew threads

Referral contests

Referral link for :

Tools What's this?

Latest OffersNew Reviews

Popular Contributors - Past 30 Days

Sponsors

Popular tags

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
  • affiliate
  • affiliate marketing
  • best
  • forum
  • free
  • google
  • hello
  • how
  • marketing
  • money
  • new
  • new member
  • seo
  • social media
  • traffic
  • website
    • Top