No more non-sense stuffs !

Top 7 Steps to secure your website/cms(wordpress,joomla,drupla) from hackers!

If you are running any website,then today,its security is Highly Important in term Of hacking and expliotion.Hackers ,now a day crack your websites from many ways including Sql Injections,config. file edit,Direct logging to your admin Folder,access content folder of your wordpress or even through install.php file.

Therefore,now we are telling top 7 most powerful steps from which you can secure your website /cms .

Level:Easy

Step 1:Password Protect your admin folders :

The common mistakes i saw since in many website that they don’t protect there admin/non-public folders .Its just invitation to hackers/coders to attack your  website.

Change permission of non-public folder to only in read-mode .In wordpress,its wp-include and wp-admin.In vbulletin,its include folder.

In your own website,just change all folders to permission to read-mode only,after editing all codes(completion of jobs).

2.Use .htaccess file :

Insert .htaccess file in your all folders(specially in root).

In wordpress,Insert .htaccess file in your main folder.

just open text file in notepad:

copybelow code and save it as named .htaccess “only extensions”

[code]

RewriteRule ^(.*/)?.svn/ – [F,L]

[/code]

For others :

add this code:

——————————————————————————————————————

AuthType Basic
AuthName "restricted area"
AuthUserFile /home/davidwalsh/html/protect-me-dir/.htpasswd
require valid-user
--------------------------------------------------------------------------------------------------------

3.Add Robot.txt file:

This is  common way ,by which you prevent secure folder from being indexed by any search engines,This prevent your special folders from  being shown to the search engines.

4.Add Prefix to your database tables:

Add unique prefix to each and every same category tables.This secure lot when anyone access your sql table remotely.

5.Protect from Vulnerabilities in your Computer as well as In your website.:

Use Proper Antivirus/anti-spy to Protect your own computer from Being hacked and its protect your websites Passowds.

Check your website,if any suspicious file found delete it ,or scan with your Server Antiviruses. Update your version of your cms regularly.Report bug if any you found.

6.Delete install.php file commonly found  in install  folder :

Its security risk,if you leave  install.php file,as the attacter can easily  install whole cms again without any extra efforts change all your passwords.Commonly Not found in simple websites.

7.Common .htaccess files to secure  your whole website :

Add .htaccess Rules

An .htaccess file is necessary for your WordPress site to function correctly. To begin, turn on the RewriteEngine:

  1. RewriteEngine On

Disable directory listings for security purposes:

  1. Options -Indexes

Add/Remove www to prevent content duplication (replace example.com with your domain):

  1. # Add www (change www.example.com to example.com to remove www)
  2. RewriteCond %{HTTP_HOST} !^www.example.com$ [NC]
  3. RewriteRule ^(.*)$ http://www.example.com/$1 [R=301,L]

WordPress requires you to redirect all non-files and directories to index.php:

  1. RewriteCond %{REQUEST_FILENAME} !-f
  2. RewriteCond %{REQUEST_FILENAME} !-d
  3. RewriteRule . index.php [PT]

Disable ETags:

  1. Header unset ETag
  2. FileETag None

Suppress PHP errors (note that this might not work on all hosts):

  1. php_flag display_startup_errors off
  2. php_flag display_errors off
  3. php_flag html_errors off
  4. php_value docref_root 0
  5. php_value docref_ext 0

Control caching on files to speed up your site:

  1. ExpiresActive On
  2. ExpiresDefault A0
  3. <FilesMatch “.(gif|jpg|jpeg|png|swf)$”>
  4. # 2 weeks
  5. ExpiresDefault A1209600
  6. Header append Cache-Control “public”
  7. </FilesMatch>
  8. <FilesMatch “.(xml|txt|html)$”>
  9. # 2 hours
  10. ExpiresDefault A7200
  11. Header append Cache-Control “proxy-revalidate”
  12. </FilesMatch>
  13. <FilesMatch “.(js|css)$”>
  14. # 3 days
  15. ExpiresDefault A259200
  16. Header append Cache-Control “proxy-revalidate”
  17. </FilesMatch>

Secure the .htaccess file:

  1. <Files .htaccess>
  2. Order Allow,Deny
  3. Deny from all
  4. </Files>

Secure the wp-config.php file:

  1. <Files wp-config.php>
  2. Order Deny,Allow
  3. Deny from all
  4. </Files>

Secure .svn directories, as explained in step #2:

  1. RewriteRule ^(.*/)?.svn/ – [F,L]




 

“APPLE’S IOS 10.2.1” – ONE SHOULD UPGRADE OR NOT

Posted by on Jan 26, 2017 in Tech-BLOG | 0 comments

“APPLE’S IOS 10.2.1” – ONE SHOULD UPGRADE OR NOT

The notification of the apple ios upgrade brings some important fixes that make it an important and essentially required update. It has announced this update after four betas and six weeks of public testing and the end result the update which doesn’t fascinated the users as much as it should. The ios 10 compatible devices will get this update. To get this update is damn simple as the update prompts is received in the device automatically but if one don’t get the update as notification as it can happen one can go into the settings and then general settings and one can found the software update option right there if their device is compatible enough for the update.

By clicking in then software update option one can get their devices updated frequently without any other formalities. Ios updates will be differ in the size depending on the user device. The ios 10.2.1 is on the small side at between 30 MB to 90 MB, but its appearances may change accordingly so that is a very big deal some users can face.

Though the update is tested by the several users and as the apple has promised its user to deal with the battery drainage bug in the device. But he has not done that perfectly which makes its users quite dull and unhappy as it is found that the update has made the 30 % battery drainage even worse after their devices are updated. Affected users began commenting or tweeting after the updates are done they were not found it so worthfull.

 

So what was the deal?

The jailbreaker :

The meaning of the above word in the software world is the modifications in the smartphone or other electronics devices to remove the restrictions imposed by the manufacturer or the operator.  In the ios 10.2.1 update there is no jailbreak and with these to hack ios proving increasingly any user who wants the jailbroken devices will need to stay clear.

The other bug that is making the people insane is the 30 % battery drainage remains unfixed. As per as the reports from several big users but the bug of the battery discharge has not been resolved. According to the apple there is no bug that exists in any iphone model except the iphone 6s. People are becoming more exhausted of this bug rather than the other ones. Other bit problems that users experience was the dimming displays and degraded wifi performance and some Bluetooth issues.

 

So what should we expect?

The ios 10.2.1 is a bug fix pure, simple and improves the security of the device. There were some vulnerabilities ios 10.2.1 fixes across like auto unlock, wifi and webkit flaws. By all this issues the move that the apple made is quite frustrating. About 30% bug is absurd. Ios 10.2.1 is widely regarded as causing the problem so as an ios update will be able to fix it or not the users wants to know.

 

— JASLEEN KAUR

— JAIN SOFTWARE FOUNDATION

“SOFTWARE UPDATES ARE QUITE GOOD AND IMPRESSIVE AS THEY FIX ALOT OF SECURITY ISSUES AND PROVIDES YOU THE GOOD SECURITY PATCHES”