Forum Support

Shape 5
March 29, 2024, 01:15:47 AM *
Welcome, Guest. Please login or register.

Login with username, password and session length
News: Shape 5 Forum
 
   Home   Help Search Login Register  
Pages: [1]
  Print  
Author Topic: Security Question  (Read 414 times)
smuir
Jr. Member
**
Offline Offline

Posts: 117



« on: May 26, 2016, 07:21:04 AM »

Hi guys

I used Incline for a site of mine a while ago.  I discovered that that site has been infected with malicious code recently, so I had the code cleaned but obviously need to update the Joomla version to the latest one and do absolutely everything I can to secure it.  Since I used the site shaper and the installation involved extensions - do I need to update the extensions - or do something to increase the security of the extensions?  If so, how?

Although there are several factors which can leave a site open to malicious code, outdated extensions/plug-ins/add-on are one of them.  Since it is a 2014 template and we're now in 2016, can you please run me through security protocols to ensure that there are no weaknesses that can be exploited?  Keep in mind that I customised this template, so just installing a new version is not an option for me.

Please let me know re security questions above, as I don't know a huge amount about it, but I do know it is security 101 to keep everything updated.

Thanks.
Logged
mikek
Administrator
*****
Offline Offline

Posts: 28743



WWW
« Reply #1 on: May 26, 2016, 07:31:22 AM »

Hello,

There are no security updates on the template or extensions used with this. A template has virtually nothing to do with security, it simply stylizes the site. It has no user protocols, database access features, file upload capability, etc. The same goes for extensions, most of our extensions are very basic. In fact this is the only security update we have ever had to do, so if you are using S5 Media Player V2 be sure to update:

http://www.shape5.com/blog/S5-Media-Player-V2-Security-Update.html

Hacks generally happen because of outdated software or server security issues. The first thing you need to do is restore a backup of your site from before the hack, your host can assist you with that. Unless you do that you are vulnerable to another hack if the hacker installed a backdoor. That step is essential. Once you do that, update all software, and change all passwords. Take other precautions as well, like setting up an htaccess password for your administrator folder as well.
Logged

Mike Knott
------------
Shape 5 Team

- Need a great host for your website? We highly recommend siteground.com!


- Put your trust in the hands of our extremely qualified staff to get your job done right!


- Firebug is the most powerful web development and debugging tool, and it will save you a lot of time, frustration and forum questions:
Install Firebug
smuir
Jr. Member
**
Offline Offline

Posts: 117



« Reply #2 on: May 27, 2016, 03:15:06 AM »

Thanks Mike that was helpful - will get straight onto it.  Thank you.
Logged
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com
Valid XHTML 1.0! Valid CSS!
Looking for the largest variety in template designs? Look no more. Never buy 1 theme again. Signups start at just $89 for access to all of our themes.
Send Us An Email
Please send us your questions and we will email you back as soon as we can. Product support questions should be posted in our support forums under the Help menu. Our staff will assist you from there.