Joomla-addons.org, components, mambots, plugins and modules for Joomla!
Home | Contact | Demo
 
Go!
 
 
Keeping your Joomla! installation safer against hacks and exploits
Security

Over the last couple of weeks we've seen quite a few components abused to hack or deface sites. A lot of those exploits could have been avoided if these servers were running register_globals off. (Read carefully, i'm not talking about all hacks, but a lot of them)

A lot of information about what register globals actually is, can be found on the php.net site.

Now, to turn register globals off:

1) locate your php.ini configuration file
2) look for this line: register_globals = On
3) change it to: register_globals = Off
4) safe the file and restart apache

That is all to keep you a bit safer.

Now, if you don't have access to your php.ini file, you can try to use a .htaccess file to change this configuration value. Add the following code anywhere in your .htaccess file:

php_value register_globals off 

Then save the file. 

And last, open globals.php

Change: define( 'RG_EMULATION', 1 );
To: define( 'RG_EMULATION', 0 );

And save the file.

 
Securing your administrator directory using .htaccess files
Security

ImageTo protect your administrator panel a bit more against hacking attempts, you can protect your administrator directory using htaccess files. 

There are a few options available: restrict access by ip address and password protection

Read more...
 
 
Would you like to receive updates of new releases or other news? Enter your details below:
Joomla-addons.org © 2006 - 2009 | www.bandhosting.nl | Newsletter | Sitemap |