|
: Security Question : smuir May 26, 2016, 07:21:04 AM Hi guys
I used Incline for a site of mine a while ago. I discovered that that site has been infected with malicious code recently, so I had the code cleaned but obviously need to update the Joomla version to the latest one and do absolutely everything I can to secure it. Since I used the site shaper and the installation involved extensions - do I need to update the extensions - or do something to increase the security of the extensions? If so, how? Although there are several factors which can leave a site open to malicious code, outdated extensions/plug-ins/add-on are one of them. Since it is a 2014 template and we're now in 2016, can you please run me through security protocols to ensure that there are no weaknesses that can be exploited? Keep in mind that I customised this template, so just installing a new version is not an option for me. Please let me know re security questions above, as I don't know a huge amount about it, but I do know it is security 101 to keep everything updated. Thanks. : Re: Security Question : mikek May 26, 2016, 07:31:22 AM Hello,
There are no security updates on the template or extensions used with this. A template has virtually nothing to do with security, it simply stylizes the site. It has no user protocols, database access features, file upload capability, etc. The same goes for extensions, most of our extensions are very basic. In fact this is the only security update we have ever had to do, so if you are using S5 Media Player V2 be sure to update: http://www.shape5.com/blog/S5-Media-Player-V2-Security-Update.html Hacks generally happen because of outdated software or server security issues. The first thing you need to do is restore a backup of your site from before the hack, your host can assist you with that. Unless you do that you are vulnerable to another hack if the hacker installed a backdoor. That step is essential. Once you do that, update all software, and change all passwords. Take other precautions as well, like setting up an htaccess password for your administrator folder as well. : Re: Security Question : smuir May 27, 2016, 03:15:06 AM Thanks Mike that was helpful - will get straight onto it. Thank you.
|