JoomlaExpo Presentation on Security by Tom Canavan

“ Is your site ready?” Disaster planning, preparation and recovery for Joomla! TM Sites Tom Canavan JoomlaRescue.com ™

Disasters DO happen ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

What do you consider a disaster? 4-19-1995 Murrah Bldg Okla City 9-11-2001 Ground Zero 8/28/2005 Hurricane Katrina

I’ll take Disaster Recovery Planning for $500.00 ,[object Object],[object Object],[object Object],[object Object]

404: Page Not found ,[object Object],[object Object],[object Object],[object Object],Aasgaard, D.O. et al., “An evaluation of Data processing ‘Machine room’ Loss and Selected Recovery Strategies,” MISRC Working Papers (Minneapolis, MN: University of Minnesota, 1978) 1 1-

Disaster Planning Life Cycle 1 2 3 4 Determine Risks Document Your Business Build Your plan Test & document

Worst Practices for DR/DP ,[object Object],[object Object],[object Object],[object Object],[object Object]

Today’s agenda Planning Determine risks Fortify Test/Document The elements, issues and challenges with planning Hackers are only one concern – there’s more Chances are GOOD you are exposed somewhere to attack Test and Documentation is vital to a healthy plan Communications Who needs to be informed, how to inform, Media/Press Ω

Determine Risks ,[object Object],[object Object],[object Object],[object Object]

Determine Risks ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Determine Risk ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Affordability of a Risk ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Key Points ,[object Object],[object Object],[object Object],[object Object],[object Object]

Why do need a plan? ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Preparing to Plan ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Planning Elements ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Planning Elements ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Key Points ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Fortification ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Fortify at risk code Can you find the problem?

Vulnerable Code ,[object Object],[object Object],[object Object],[object Object],[object Object]

Fortify - .htaccess .htaccess – your first line of defense

Fortify - Permissions ,[object Object],[object Object],[object Object],[object Object],[object Object]

Fortify – PHP.INI ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Fortify - Versions ,[object Object],[object Object],[object Object],[object Object],[object Object]

Fortify – Common Trip Ups ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Fortify - Poor Host Security ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Fortification Tools ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Documentation ,[object Object],[object Object]

Documentation ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Maintaining your plan ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Drill for results ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Some things your plan should have ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

A few words on drilling Conducting a live test helps increase your site’s survivability by proving your plan works, and ensuring your staff knows their job

About your plan "No plan survives first engagement with the enemy" Von Clausewitz.—Prussian Military Thinker

Communications ,[object Object],[object Object],[object Object]

Crisis Communication ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Media Communications ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Staff Communications ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]

Tools for communication ,[object Object],[object Object],[object Object],[object Object],[object Object]

Key Points ,[object Object],[object Object],[object Object],[object Object]

JoomlaExpo Presentation on Security by Tom Canavan

JoomlaExpo Presentation on Security by Tom Canavan

Recommended

More Related Content

Similar to JoomlaExpo Presentation on Security by Tom Canavan

Similar to JoomlaExpo Presentation on Security by Tom Canavan(20)

More from alledia

More from alledia(12)

Recently uploaded

Recently uploaded(20)

JoomlaExpo Presentation on Security by Tom Canavan