Are you afraid someone might hack your website from the login form, well you can password protect your administrator folder for WordPress, Joomla, Â phpBB2, and PHPBB3 forum. All you need to do is login to your web hosting administrative control panel andÂ give the administrator folder a username and password in the protected directories section of your Cpanel. If you need help, contact your hosting tech support. It may not be available for free hosting accounts, but most decent paid hosting plans offer protected directories/folders.
I recommend giving your administrator folder a unique username likeÂ “mrtisawesome” and a strong passwordÂ likeÂ “@ds@reC0OL12″Â .
Joomla 1.0-1.5Â administrator folder is located at JoomlaFolder/administrator on your Website server.
WordPress administrator folder is located at WordPressFolder/WP-admin
phpBB2 administrator folder is located at phpBB2Folder/admin
phpBB3 administrator folder is located at phpBB3Folder/adm
Note: it is important to make your regular admin password also hard toÂ guessÂ Â by using Upper, lowwer case letters, numbers, and $ymbols.
If your website is a forum, it is very important you secure your login name and password for your admin account since the admin account can delete topics,edit, posts, and replys from the frontend of the forum without logging into the control panel.
Now that you password protected your admin folders it means a hacker has to hack two login usernames and password in order to login to your administrator account on your CMS, Blog, or Forum.
If you want to increase your security for your websites even more, you can install Security plugins for your CMS, WordPress, or forum like Security extensions found on Joomla.com http://extensions.joomla.org/extensions/access-a-security or WordPress : http://wordpress.org/extend/plugins/search.php?q=security&sort=
It is best to also keep your computer free of spyware, malware, or viruses since they can contain keyloggers which can steal your passwords by logging your computer key strokes, and the hacker can just use your passwords he logged with a keylogger to login to your account.
Don’t share your password or username with anyone except for trusted members of your staff .
Keep your website, forum, and blog software updated.
Regularly backup all your files with a FTP client like FilezillaÂ and Database files for your website with phpmyadmin. It is best to do it once a week or more or whenever your website have new content or plugins installed.
Change your passwords on a regular basis like once a month or more.
CHMOD your files and directory with an FTP client like Filezilla to 755 or better, so only the owner can write to the files and folder.
Make sure you regularly change your password for your FTP acount and Web hosting control panel login account since from an FTP account or web hosting login account a hacker can delete all your files and database files.