We all know the usual generic security measures: lengthy secure passwords, obscured directory names for the admin and moderator control panels, and .htaccess protection in sensitive directories. Further than these common measures, are there any other techniques that you have employed to ensure optimum security?
Sometimes I'll ask the hosting provider to do a security audit. I ask them to make sure that everything is up to date, such as the linux kernal, mysql, php, apache, brute force software installed and working, update cpanel,,,,,,,. I'll go through my installed modifications and make sure they are up to date. Modifications that are no longer supported are removed. This usually takes several hours.
1.Do a Diagnostic within the software to search for suspicious file versions for VP and IPB. 2.Check Skin Template's for any Exploit Codes like $execode so no Hacking Shells can be used to upload stuff to the site... 3.Auto-Backup Every 6 Hours... 4.The rest of the stuff i do i dont give out to the public but there very well and highly good for those people who dont like to be hacked...
