Security Set-Up for WHMCS

[localwebconnect]

Hi there,

I am a lot calmer today. lol

Now I am wanting to make sure I set everything up right and not sure where to start. I want to make sure all my accounts / billing is secure.

I went to the WHMCS site and they say to move the attachments, downloads, & templates_c folders outside the tree after changing the permissions to 0777.. Is this something I should do along with changing the admin name?

Can you give me the list of common things to do to make everything secure? or point me to the most accurate thread that I should follow?

Much thanx. =)

[striddy]

Quote:

Originally Posted by localwebconnect

I went to the WHMCS site and they say to move the attachments, downloads, & templates_c folders outside the tree after changing the permissions to 0777.. Is this something I should do along with changing the admin name?

Yes you can certainly move those three directories. Follow the instructions on this page but DO NOT chmod to 0777. Leave directories as 0755.

http://wiki.whmcs.com/Further_Security_Steps

[localwebconnect]

So basically I just put them 1 level up so it is out of public_html?

Also, what other security measures should I follow?

Change my "admin" name..
SSL..
... ?

[striddy]

Quote:

Originally Posted by localwebconnect

So basically I just put them 1 level up so it is out of public_html?

Also, what other security measures should I follow?

Change my "admin" name..
SSL

Yes move those directories above public_html.

Rename your admin directory, then put in a support ticket to WHMCS to re-issue your license.

And yes SSL is good.

[localwebconnect]

Thanx.

If you think of anything else please let me know. I had my websites hacked before where a big middle finger was in place of my home page and really don't want to deal with future customers having that issue.

xo