Page 1 of 1
How to protect my Joomla Site from Hackers
Posted: Sun Jul 19, 2009 7:09 pm
by Giselle_C
My Joomla site is hacked 3 times by hackers. Is there any addon that i can install to protect my site form hacking.
Thanks!
Re: How to protect my Joomla Site from Hackers
Posted: Sun Jul 19, 2009 7:33 pm
by Stroganoff
Find out how they hacked your site by reading the apache logs (availabe somewhere in your web hoster's control panel). More often then not they install a web shell somewhere so they'll always have access to everything even in case you close the original security hole (by upgrading to the latest version).
Also download your whole Joomla installations and compare it (with a free tool like "WinMerge") with your backup to see which files were modified or added.
Always use the
latest versions of Joomla and
all of it's extensions. Subscribe to newsletters and newsfeeds of Joomla and your extension developers.
Read this:
http://docs.joomla.org/Category:Security_Checklist
Otherwise please stop hosting websites if you don't want to acquire the afforded knowledge or effort.
Re: How to protect my Joomla Site from Hackers
Posted: Sun Jul 19, 2009 7:42 pm
by Stroganoff
Here are Joomla's security extensions, they can assist you - no more, no less.
http://extensions.joomla.org/extensions ... e-security
Re: How to protect my Joomla Site from Hackers
Posted: Sun Jul 19, 2009 11:26 pm
by Giselle_C
Thanks a lot Stroganoff! This is a very useful suggestions. I would like to thank you in advance before even before reading "Security Checklist".
Stroganoff wrote:Find out how they hacked your site by reading the apache logs (availabe somewhere in your web hoster's control panel). More often then not they install a web shell somewhere so they'll always have access to everything even in case you close the original security hole (by upgrading to the latest version).
Also download your whole Joomla installations and compare it (with a free tool like "WinMerge") with your backup to see which files were modified or added.
Always use the
latest versions of Joomla and
all of it's extensions. Subscribe to newsletters and newsfeeds of Joomla and your extension developers.
Read this:
http://docs.joomla.org/Category:Security_Checklist
Otherwise please stop hosting websites if you don't want to acquire the afforded knowledge or effort.
Re: How to protect my Joomla Site from Hackers
Posted: Mon Jul 20, 2009 8:08 am
by Ghonjez
Re: How to protect my Joomla Site from Hackers
Posted: Mon Jul 20, 2009 9:35 am
by Stroganoff
The second one of these threads is largely (items 1 to 7) promoting
security through obscurity and should be taken with a notable amount of salt IMHO.
Re: How to protect my Joomla Site from Hackers
Posted: Mon Jul 20, 2009 9:45 am
by tusker
Appropriate file permissions are very important in most of the cases because usually websites are hosted on linux, apache, Sql combination and only proper file permissions can reduce the chance of your website getting hacked to less than 50%.
