Open a folder that can be used by a “hacker” to try to penetrate a system of administration. Providing the form, such as: Login page and search engine (Search) will dimanfaatka by hackers to smuggle SQL code more familiar with the term MySQL Injection. A hacker will memanfaatakan form to inject some SQL code. Because basically, Login page and point to the database Searching.

All surely know, the login page to the Joomla administrator is very open and easily accessible. Although there is a username and password fields, justeru things that are often used by hackers in the mysql injection. There are several ways to protect the folder, including: password protect a folder with the facility through cPanel, a folder with an. Htaccess, protect folder with additional code (Ex: php, asp, etc.), or take advantage of Joomla extensions.

Joomla has an obstacle, the user can easily know the site is created in Joomla! by typing the URL to access the administration area (ie www.sitename.com / administrator). This makes for hackers to hack their site with a simple id and password for Joomla!

There are several extensions to protect Joomla administrator page that is either free or paid. Here there is a plugins and modules that can be used to protect Joomla administrator page. Authentication Module jSecure prevent someone to access the login page with the administrator to add access keys (access keys). This module can work on Joomla 1.0.x and Joomla 1.5.x.

1. First time, please download  JSecure Authentication file or you can download at site  Joomla http://extensions.joomla.org).
2. Login into the administrator.
   



3. If using  Joomla 1.0.x, choice menu Module > Installer.
4. Click Browse button, specify a file to upload. Click the Upload & Install.
   



5. If  using Joomla 1.5.x, pilih menu Extensions > Install/Uninstall.

   

6. Click Browse button, specific file to Upload. Click Upload & Install button.
   



7. Wait some time until the installation process was successful.
   



8. Once successfully installed, there are some lines that the script should be included in the file to Joomla. For Joomla 1.0.x, find the file login.php in folder /administrator/templates/joomla_admin.
   



9. Please insert this script.

   require_once( $mosConfig_absolute_path . '/administrator/includes/admin.php' );
   mosLoadAdminModules( 'left' );

10. Log in to Administrator page again. Select Module > Administrator Modules menu.
    



11. Click link jSecure Authentication.
    



12. Published on radion Select button, then save.
    



13. On the Parameters tab, enter the text after the keyword as the administrator. So, go for Joomla administrator page is changed to http://yourdomain.com/administrator?goto4dm1n. Remember!, There is a suffix? Goto4dm1n after administrators. If you are unsure, press Save button to save. Make sure not to forget the key, if not forget it will be able to login to Joomla administator page.



14. For Joomla 1.5.x, after successfully installed select the Extensions > Module Manager menu .



15. Select Administrator.



16. Find module jSecure Authentication.



17. Select Enabled.



18. In the Parameter, enter the word to protect the administrator page. Next, click the Save button to save your changes

    .

    

19. Test your website, login to the Administrator with the page write the URL address http://yourdomain.com/administrator. What happened?