08/16/2008
Joomla defense tips
If you have been attacked with J1.5 these are the steps I would follow:
Restore any backups you may have
Temporally limit access to just your IP using .htaccess
Apply the J1.5.6 patch
Change the database name and the user/password
Install one of the components I mentioned above and configure
Install JoomlaPack (excellent backup software) if you do not have it already
Examine access logs and see if you can identify the attackers IP then add that as a "Deny" in your .htaccess or jFirewall etc.
Backup the site in its current state and
Remove your IP restriction and take the site live
Site back and have a cold one...
protect the admin directory with a .htaccess / .htpasswd login
check also the security list for Joomla administrators
Joomla.org self was hacked in one of the first attack waves. http://joomsuite.com/index.php?option=com_resource&view=article&article=18&Itemid=16 20$
JoomSuite Defender is a powerful component that allows you to protect your site from different attacks, such as PHP injections, SQL injections, Flood and sometimes even from spam. JS Defender is written completely in Joomla 1.5 native model.
http://www.bestforjoomla.com/ 40 Euro a year a domain
jFireWall is a powerful professional tool that protects your website. jFireWall guards your site from SQL, PHP injections, SHELL and FLOOD hacker attacks. jFireWall uses its own powerful intellectual scanners to find attacks. jFireWall immediately reacts on any attempts of unsanctioned intrusions into your website using a smart system of dangers’ level evaluation. After evaluating the danger, jFireWall immediately takes actions that vary from warnings to blocking. With installed jFireWall, You will start feeling Yourself safe knowing that your website is under strong protection.
12:23 | Permalink | Comments (0) | Email this
| 
| 
del.icio.us
|
| 
Digg | 
Facebook
Post a comment