Security Suggestions - Joomla! Forum - community, help and support
i have been encouraging company switch joomla having used in previous job , having had lot of success it. i'm huge fan of joomla's power , ease of use. our company thinking making switch joomla want make sure make sense security perspective. background web design , know little programming, or web security. other people have in our company know little web security relates joomla either. in websites created past clients using joomla, security not major concern company, there more of need sure information stored on site secure. question this: should suggest company hiring web security specialist (either consultant or actual employee) or joomla pretty secure long have recent patches? , if plan on installing extensions (which i'm sure will), compromise our security if don't know we're doing? suggestions on matter appreciated.
thanks!
thanks!
as software, whether open source or commercial, there risk security, if not know yu doing , if install 3rd party add-ons.
depending on business of company whether full-time security person required or short-term contract check server configuration , site configurations, regular reviews or audits, can determined , company.
joomla! in secure other profesisonally developed web application, regardless of it's open source status, development teams here professionals years of expertise , experience behind them, most, if not maintaining regular, full time employment within field outside of joomla! project.
you need assess evry extension yu install, it's suitability, manageability, viability , security record determine whether risk sites security.
if hosting managed 3rd party hosting firm, need discuss security concerns them , obtain confirmation (and confidence) of capability deliver level of service business requires. if going host site on internally managed servers, again, need sure these servers public internet facing secured , risks understood, negated, managed , continually montiored. running server, enterprise or not, complex task, when comes maintenance , security. virtually bit of knowledge can build/load server, there far more that.
the docmentation site holds vast amount of information regarding common security measures , maintenance/configuration task's, not comprehensive guide server maintenance , security, merely starting point. further, , continued, research required ensure continued confidence , stability of server , site.
depending on business of company whether full-time security person required or short-term contract check server configuration , site configurations, regular reviews or audits, can determined , company.
joomla! in secure other profesisonally developed web application, regardless of it's open source status, development teams here professionals years of expertise , experience behind them, most, if not maintaining regular, full time employment within field outside of joomla! project.
you need assess evry extension yu install, it's suitability, manageability, viability , security record determine whether risk sites security.
if hosting managed 3rd party hosting firm, need discuss security concerns them , obtain confirmation (and confidence) of capability deliver level of service business requires. if going host site on internally managed servers, again, need sure these servers public internet facing secured , risks understood, negated, managed , continually montiored. running server, enterprise or not, complex task, when comes maintenance , security. virtually bit of knowledge can build/load server, there far more that.
the docmentation site holds vast amount of information regarding common security measures , maintenance/configuration task's, not comprehensive guide server maintenance , security, merely starting point. further, , continued, research required ensure continued confidence , stability of server , site.
Comments
Post a Comment