- Always upgrade to the latest stable version.
- Do not install any unofficial hacks or plugins as they are not written or reviewed by our developers.
- Password protect your Administrator and Moderator Control Panels directories as well as the install and includes directories using .htaccess/.htpassword http://www.javascriptkit.com/howto/htaccess3.shtml
- Make sure the tools.php (vB3) file is NOWHERE on your website.
- Remove the ImpEx files if you had used this import system.
- If you have phpMyAdmin make sure it's password protected.
- If you suspect a hacking attempt, ask your host to change the login password for your web account.
- Make sure all the Admin and Mod passwords are secure. Change them if you have any doubts. And use hard to guess passwords.
- NEVER allow HTML in posts, PMs or in sigs.
- Make absolutely sure there are no viruses, trojans or keylogger spyware on your PC. Any of these could steal your password and other personal info.
- Do NOT upload the directory called do_not_upload/
- Use a different password for each forum you sign up with. Use a different password for your forum as you do for the .htaccess directory password.
- Update the config.php file and set yourself as undeletable user so they can't touch your admin account.
- Do Not Upload config.php.new when upgrading your forums.
- If you are on a shared hosting server, make sure all your vBulletin PHP files are chmod 644
cd /path/to/your/vbulletin chmod -R 644 *.php
No comments:
Post a Comment