All websites are prone to being compromised by hackers or some other disaster.
Joomla! is no different from any other CMS or content management system in this regard.
There are then certain desirable things which all Joomla! CMS website owners should do to protect their website.
For example:
- Always use the latest release.
- Frequently check for new releases.
- Back up your website frequently.
- Install, configure & maintain a Web Application Firewall.
But if you are responsible for a businesses or organisation's website, these desirable things become essential tasks.
Essential tasks that will:
- help protect your website against compromise by hackers,
- provide reassurance when making technical improvements which may have unforeseen consequences, and
- enable a quick recovery when the proverbial hits the fan!
Make Joomla! CMS Security YOUR #1 Priority
Always use the latest release
Experience tells us that websites which use the latest available release of Joomla! CMS are more likely to be:
- More Secure.
- More Accessible.
- More Mobile Friendly.
- Faster.
- Perform better in Search Engines.
- Easier to use.
Read more: How to find out about new releases.
Also check whether the server hosting your website is using the latest available release for a given version of PHP and MySQL.
We tell you how to check and consider which versions to use in our Joomla! User Guide.
Frequently check for new releases
Frequently sign into your website's control panel.
When you do you will be prompted if there has been a new release of the Joomla! CMS.
You should also periodically visit the Official Joomla! website for the latest news about new releases.
And use the Joomla! RSS News Feeds, including:
- Security Announcements,
- Joomla! Announcements, and
- Community Magazine.
Back up your website frequently
Frequently perform a full backup of your website (database and files).
If you have been making regular backups, and your website is compromised, you can restore your last known 'clean' back up.
Add a Web Application Firewall to your website
If you value your Joomla! website then protect it.
Install, configure and maintain a Web Application Firewall (or WAF).
We believe that NO business should run a website without a Web Application Firewall.
Add an SSL Certificate to your website
When you add an SSL Certificate to your website's domain your user credentials will be encrypted when you sign into your website's control panel.
We recommend free Lets Encrypt SSL certificates which can be quickly and easily added when you sign into your hosting control panel.
There are some Joomla! and SEO settings that may need to be changed when you add SSL.
Protect Your Web Connection
If the application you use to connect to your website is compromised then so will be your website.
When thinking about website security, it is easy to overlook the privacy and security settings of the applications you use to connect to the internet, for example:
- the Operating System of your computer or mobile device,
- the Web Browser you use to connect to your website and Hosting Control Panel,
- the Search Engine you use to browse the web,
- the Email Client you use to send and receive mail,
- the Router you use to connect to your Internet Service Provider, and
- the File Transfer or FTP Client you use to connect to your Hosting Control Panel.
All of the above can be targeted by hackers seeking to exploit your Personal Data, your Hosting Account and your Website.
JOOMLERS.UK is sponsored by WYNCHCO Solutions
We help and support managers responsible for Joomla! CMS websites in UK business, academy school and third sector organisations across Cheshire, Greater Manchester, Merseyside and North West England.
