There are a few issues users should consider before installing a PHP script.
1) Is this script the latest and most secure version?
2) Does this script have a good security track record?
3) Is this script made by a reputable group?
If the above conditions all have "Yes" as the answer, then you are already ahead of the game! Half the battle in using php scripts is ensuring the script is the latest and most secure version. The majority of attacks are not intentionally directed at you! They are simply random attempts on your site because the attacker found your domain name via a search engine when looking for strings common to a particular script. Thus, if an attacker is trying to compromise as many Mambo sites as possible, they will search for the version information common to Mambo sites, and then try the more common exploits.
After you have installed the secure scripts, ensure that you create a new MySQL user for the script, with a different username and password then the main cpanel account, and use this user to connect to the new MySQL DB you created for the script. This will ensure your cpanel/whm login info is never stored in the account in plaintext, as php scripts need to store the DB login information in plaintext on the account.
Les plus consultés
How can I prevent my site from being hacked?
1. Software and Scripts Up to Date. If for some reason your running an old version of phpbb, or...
How can I reduce the spam my domain receives?
Solution Our servers have two primary method of spam control. One of these forms is RBLs (Real...
What is considered a strong password?
There are 5 simply steps to follow to create a strong password:1) 6 - 8 alpha-numeric (Numbers,...
What is CPU/Memory/MySQL abuse?
First, it must be made clear that CPU/Memory usage is different than bandwidth usage. Users...