This is how you should secure Joomla website
Although, Joomla comes as the second most popular option in terms of open source CMS market share taking only 6.7% of the total website, when you convert that 6.7% to a real number, you will really realize, how big that number really is. According to the recent survey taken by Netcraft (you should check it out, its really interesting), The distribution of top 4 Opensource CMS looks like the piechart belo
Now thats out of the way, lets talk about the steps you should take to secure Joomla website. I will list out 4 easy check lists that will make your Joomla website secure.
1. Update your Joomla core, templates and extensions.
Most of the hacks that takes place is because of something that was out dated in your system. Always keep your system updated. Joomla has a built in extension update manager allows you to update Joomla Core, template or extensions in a matter of few clicks. Before you install any extensions, make sure they come from the official Joomla extension directory and the extension uses Joomla’s update system so you get notification immediately when there in an update right in your dashboard.
2. Strong username and password.
This is very simple. If you use a simple username and password, your website WILL GET HACKED! Use a random username and random password. Use free tool such Secure Password Generator to generate your password or even the username. If you want to be extra secure, your password managers that are readily available.
3. Backup everything
Best things in life are free. That is true for Joomla as well. There are various options that helps you automate backup of your joomla website a breeze. Tools such as Akeeba Backup are very popular, it helps you to make backup and restore it and has excellent documentation that may come handy should you run into any issues. Always make periodic backup of your website and save an onsite and offsite copy of every backup to be on the safe side.
4. Use admin tools
Free extensions such as Admin Tools Core introduce themselves as “true Swiss Army knife for your site” and they are. They will detect and notify new Joomla releases, fix your files’ and directories’ permissions, protect your administrator directory with a password, change your database prefix, migrate links pointing to your old domain on-the-fly and perform database maintenance, all with a single click. If you take security seriously, definitely use this tool.
There are other security measures that you have to take to make your Joomla Installation Secure which requires a basic understanding of coding and guts to edit files and permission which we will discuss in our next post.