Blog

Read the Latest News

In simple terms, a Brute Force attack is an automated software hack that attempts usernames and passwords over and over, until it can get in.

Recently there has been an increase in the use of Brute Force attacks against Joomla! websites.

From a website owner's perspective, a Brute Force attack has a couple of effects:

  1. Your website will become really slow.
  2. It is likely your bandwidth usage will skyrocket.

But why? My website isn't that interesting!

Websites are usually hacked either to get hold of valuable data, or as a means of getting to the server. Or, according to this article, it could be for one of these reasons:

  1. People bored with nothing better to do.
  2. Political agenda.
  3. You've irritated somebody.
  4. You're in competition with each other.

So what can we do to stop it?

There are a number of preventative measures we can attempt, including:

  1. Don't use the admin username (we don't).
  2. Choose good passwords. This is usually the weakest link in the chain. If you use a word commonly found in a dictionary, it can be guessed by these programs fairly easily. (And if your password is in this list, we recommend you change it asap!)
  3. Change your /administrator URL. (We now do this for all Joomla!3x websites.)
  4. Install a plugin to secure your /administrator area. (We now do this for all Joomla!3x websites.)

For more information about Brute Force attacks and secure passwords, we recommend:

Understanding Denial of Service and Brute Force Attacks

The 25 Most Popular Passwords of 2014: We're All Doomed

If your current Joomla! website was built between about 2011 and 2013, it was probably created using Joomla! 2.5x which was the latest stable version available at the time.

However, software is always being improved and updated, and Joomla! operates according to an official release cycle which includes Long Term Support (LTS) releases that are officially supported for about 4 years, and Short Term Support (STS) releases which are only supported for a matter of months.

I've always tried to build websites using LTS releases, to enable longer-term stability for my clients, but sometimes there are compelling reasons to do otherwise, and sometimes your website creation may occur towards the end of a current LTS so you would not necessarily get a full 4 years. Four years!! It's worse than buying a car! :)

Important Dates

How exciting!

WebSolutionZ has been approved by the official Joomla! Resources Directory as a registered service provider!

One of only 3 in Melbourne so far! :)

Contact us for all your website requirements.  

2014 EWS JRD

Continuing on with our social media theme - WebSolutionZ is now also on Instagram! Please click below to visit and follow us. Thanks! :)

http://instagram.com/websolutionz

If you need assistance with your web presence or website, please contact me.

**Updated 15 January 2015**

Once your Facebook Page is set up and you are an Admin, there are a couple of things to remember.

1.   Liking as your Page, vs liking as yourself. When you use the Desktop version of Facebook and click on your Page, because you are an Admin, by default anything you post on your Page will be posted on behalf of [BusinessName], not yourself. You will be able to see this by checking to see which icon is visible in the Status box:

fbadmin1

However, it's considered poor form on social media to Like your own post, so if you write something from [BusinessName], don't click Like straight away. Instead, click on that Posting as button to the right of any Status and change to your personal profile, THEN Like the post, as yourself:

fbadmin2


This has the added benefit that your Facebook friends will see that you've Liked that post, which will possibly bring more people to the Page.

2.  Customer Posts or Reviews. Social media is a conversation. If somebody takes the time to leave a comment or Review, it is important to respond. You may choose to just Like the comment/Review, or leave a thank you/reply. You can find Reviews on the left underneath Photos (on the desktop version).

If you mostly access Facebook via smartphone or tablet, you may like to consider installing the Facebook Pages Manager App. This allows administration of business Pages via one app, keeping the Facebook app for personal use. This not only prevents accidental mis-posts from the wrong place, but the Pages Manager app also provides a lot more insights into the Page's usage than the Facebook app does.

Good luck!  

A client asked the other day "How do I get onto my Facebook business page?" (I'd previously set it up for him as part of a website development project).

Quick answer - you need a personal Facebook profile first. Then you can create or administer as many pages as you like.

Once the client created a personal Facebook profile, I asked him to "Like" his page. Then I did the following to make him an Admin:

fbaddadmin1
  1. Click on Page Likes.
  2. Click on See All.
  3. Click on the gear icon next to the client's name and select Make Admin.
fbaddadmin2


Please note: If you can't see the client's name in the Page Likes, it's possible their security settings are preventing this. Ask them to do this:

  1. Click on their own profile page.
  2. Click on About.
  3. Scroll down to Likes and click on the Manage pencil icon on the top-right of the window.
  4. Click on Edit Privacy.
  5. Look at the bottom for the Other option. Set the privacy on this option to Public.

At this point, you should be able to see the client's name in the Page Likes. Once you have added them as an Admin, suggest that they restore the privacy on their Likes by reversing the above.