In this video, we'll explore why it's crucial to disable or delete unused superuser accounts in Joomla. Leaving these accounts active can pose a significant security risk to your site.
Former users or compromised accounts could be exploited, leading to unauthorized access or even malware installation. I'll walk you through the steps to identify and secure these accounts, ensuring your Joomla site remains protected.
00:00:00 - Intro & Sponsors
00:00:10 - The Risk of Unused Super User Accounts
00:00:30 - Cleaning Up a Hacked Client Site
00:01:02 - Accessing User Management in Joomla 5
00:01:18 - How to Filter for Super Users
00:01:39 - Deleting Unused Super User Accounts
00:02:07 - Alternative: Blocking Accounts
00:02:32 - Why Regular Account Reviews are Crucial
00:02:50 - Final Thoughts & Conclusion
Summary
Steps to Cull or Disable Unused Super User Accounts in Joomla (MM 313)
1๏ธโฃ Identify the Risk
- Unused Super User accounts pose a security threat.
- A clientโs site was hacked due to an inactive Super User account that remained enabled.
2๏ธโฃ Access Joomla User Management
- Navigate to Users > Manage in the Joomla admin panel.
- Use filter options to display only Super Users.
3๏ธโฃ Review and Take Action
- Locate accounts that are no longer in use.
- Choose one of two actions:
๐น Delete: If the account is no longer needed, remove it permanently.
๐น Block: If the account may be needed later (e.g., for a developer), disable it by selecting Blocked.
4๏ธโฃ Prevent Future Risks
- Regularly audit Super User accounts.
- Disable or remove accounts that are no longer necessary.
๐ Final Tip: Periodic maintenance ensures better security for your Joomla site.
๐ Subscribe for more Joomla tips!
Please send any feedback or bug reports or queries to;
Contact Tim Davis โบ
Joomla Training Cohort โบ https://cybersalt.com/jtc
Add comment