Joomla Security

Many popular websites including those at Northeastern are created and managed with Joomla. Joomla is an open source content management system that allows those with little web programming experience to build elegant and complex websites.

Installing Joomla is fast and easy; making it secure against web attacks takes some time and attention to detail.

Why secure Joomla?

The popularity of the Joomla platform has given rise to hundreds of hacks that are designed to take over control of the website management. One popular hack inserts advertising and malware links into each page of the site to increase the advertising Google ranking and to infect viewers with drive-by malware downloads. Every Joomla administrator is responsible for the safety and security of their site.

Unfortunately there is no way to completely secure your site against attacks but there are steps that can greatly reduce the likelihood of a successful hack. Here are several resources on how to secure your Joomla site. If you do not have the technological expertise to carry out these recommendations please seek help within the university community. There are many smart and computer savvy people at Northeastern who would be happy to help.

Top 10 Stupidest Administrator Tricks – This document outlines 10 easy ways that a site can get hacked and how to prevent it.

Joomla Documentation – Security
Joomla Documentation – Administrators

NU Library E-Book: CMS Security Handbook : The Comprehensive Guide for WordPress, Joomla!, Drupal, and Plone (You will have to be logged into myNEU or on campus to view this book)

Note: If you are hosting your Joomla site at Northeastern you will not be able to modify system configuration files such as the php.ini or apache. Northeastern already employs precautions to help ensure the server configurations are in line with the latest security guidelines and threats.

This entry was posted in Website Security. Bookmark the permalink. Both comments and trackbacks are currently closed.