Security harden your website post Joomla! 3.8.8
As usual. the Joomla! Project recommended that Joomlers update their website with immediate effect.
Unusually this time however, they also recommended a little extra housekeeping.
Purpose: to harden website security.
Post Installation Message
After updating an old version of Joomla! CMS to v3.8.8 or later you should be prompted to see the following Post Installation Message.
If you missed it then you can re-read the message when you select Components > Post Installation Messages from the menu at the top of your website's control panel.
Recommended changes to Global Configuration settings
With effect from Joomla! 3.8.8 the default Global Configuration settings of fresh installations of Joomla! CMS websites will have tighter security settings.
The Joomla! Project recommend that you check and change the following Global Configuration settings:
Text Filters > Administrator,
Users > Send email,
Media > Legal Extensions & Legal MIME Types,
Articles > Show Email.
Harden your website's security
Global Configuration Settings
As well as hardening website security, the Global Configuration screen enables you to:
- control whether search engine friendly URLs are enabled,
- change the site global meta data, and
- choose a content editor (other than the default editor provided, TinyMCE).
For more information visit our Joomla! User Guide.
Web Application Firewall
If you are really serious about hardening website security, get yourself a Web Application Firewall.
We like Akeeba Admin Tools PRO.
Need help configuring Admin Tools, just ask.