SUBSCRIBE to my JOOMLA TIPSs. Every now and then I send out a list of my latest tips to make your life easier and keep in touch. (no spam). Receive HTML? unsubscribe at any time.

Internet Secrets

Tips for getting people visiting your site.

The Basics:

  • Write a paragraph about who, what you are that describes you and your purpose here in cyberspace. At least 50 words. (This can be used as the site's meta description.)
  • Write keywords that describe everything you are. (think about what other people will think of in order to find your site.)
  • Write some keywords of categories that your website would fall under.
  • Use all of those keywords in your metatags and most importantly use them throughout the content of your site.
  • Links: Use plenty of links from your pages to other areas of interest that are relevant to your content. Think about what other websites will be useful to people who are looking at your site.
  • Also contact those other website owners and ask them to do you the same favor by adding your link to their links area..
  • Publicize your website in the real world too! On your personal cards, on your real world brochures, on your car, on your signage. Anywhere where you can show your web address to people in the real world. Do it. You won't be sorry.
  • Have promotions, free gifts for your visitors, special offers etc. That will entice people to visit your site again and tell their friends about it. Be creative and give as much value to people as you can. The golden rule is that no-one will visit your site unless it is valuable to them.

 

 

Share
 

Security Notes (In Progress)

disable all unused componets + modules

robots.txt (images show search) (robots.txt has to live in root domain)

 

remove ?tp=1 (code on video or website)

##### Start ?tp=1 prevention #####

RewriteCond %{QUERY_STRING} tp=(.*)

RewriteRule ^(.*)$ index.php [F,L]

##### End ?tp=1 pevention #####

?tp=brianteeman

template/index.php

// Remove the generator meta tag

$this->setGenerator(null);

?>

or be more funky

// Change the generator meta tag

$this->setGenerator('Drupal);

?>

Exploits:

example:

http://www.example.com/index.php?

option=com_name&view=user

&user_id=62+and%201=2+union+select+concat(username,0x3a,password)+from+jos_users

 

don't use jos_ for your database

 

delete original admin accounts.

rename the admin

 

check this: administrator/components/com_name/name.xml (should not be visible)

.htaccess:

<File ~ "\.xml$">

Order allow,deny

Deny from all

Satisfy All

</Files>

 

How to fix 404 error page.. show something better than  that nasty error page.

templates/system/error.php

copy to templates/

you can create any php file here instead of what it is.

 

option=templates=solarflame2 (remove the other templates)

 

secure admin

htaccess rule require a new password

or from specific ip

sweekey plugin hardware key

jsecure is also good

Share
Add new comment
   
   
 SoulFire by Pure Plunge