Joomla is CMS which you can use out of the box without having to fear any major threat level for being hacked by the malicious outside world. However, there's always a chance to make it better and more hacking-proof, so here we go with a list of possible additional hardening tricks you can use on your site.
It's fairly easy to get to know your site is running on Joomla. To get on overview on how to do this, you can go to the article about "What CMS is your site running?"
There is no possibility that 1 of these tips or all of these tips will make sure you won't get hacked. Check out the list beneath and assess what can be helpful for your site, as the exact level of necessary and desired hardening depends on your needs.
Be aware that all these tricks have been used on a couple of my sites, but I cannot garantuee you that it will work exactly the same way on your site, so please check before you apply on a production site!
In order to get some classification in the tips & trics I will show in this article, I ordered them in 4 classes:
- Server hardening - Apache
- Joomla hardening - configuration adaptations
- Joomla hardening extensions - extension configuration
- Monitor your site
WARNING: before applying all these possible tips to your live site, please try them on a test site AND make sure you have a working backup of your live site before you apply these security optimizations to this site too.