Difference between revisions of "Security Checklist/Site Recovery"
From Joomla! Documentation
< Security Checklist
| Line 7: | Line 7: | ||
===Reset your administrator password=== | ===Reset your administrator password=== | ||
| − | :'''([[Security_and_Performance_FAQs#How_do_I_reset_an_administrator_password.3F|FAQ]])''' | + | :Many attackers take pleasure in locking you out of your site. They do this by 'changing the key', or changing your administrator password. If you are locked out, don't panic! There is a simple procedure for resetting your administrator password. '''([[Security_and_Performance_FAQs#How_do_I_reset_an_administrator_password.3F|FAQ]])''' |
===Find exploit attempts using the *NIX shell=== | ===Find exploit attempts using the *NIX shell=== | ||
Revision as of 01:13, 29 October 2008
Site Recovery[edit]
Follow a logical and rigorous recovery process[edit]
- Know the important steps to follow when your site has been compromised. Once you've gotten to this point, there are few shortcuts. (FAQ)
Reset your administrator password[edit]
- Many attackers take pleasure in locking you out of your site. They do this by 'changing the key', or changing your administrator password. If you are locked out, don't panic! There is a simple procedure for resetting your administrator password. (FAQ)
Find exploit attempts using the *NIX shell[edit]
- Know how to check for suspicious and/or modified files. Know how to check the raw Apache logs for suspicious activity on your site. (FAQ)
Get help the right way[edit]
- If you believe your Web site was attacked, do not post in the Joomla! forums. If there is a vulnerability, publishing that information could put other Web sites at risk. Instead, report possible security vulnerabilities to the Joomla! Security Task Force.
Your Turn...[edit]
- If you discover a bug in Joomla! core files, report it here.