I propose blocking all access to Joomla's administrator login page and front-end user login (if you don't use it) because I constantly see a-hole bots in my logs trying to hack my site. Add these lines to the Nginx site configuration.# DENY ACCESS TO JOOMLA ADMIN location ~* /administrator.* { deny all; }# DENY ACCESS TO JOOMLA USER LOGIN location ~* /component/user.* { deny all; }
Now how do you access the Joomla administrator login page?? Serve your site on another port using a simpler configuration, then setup your firewall to only allow your IP to access that port.
Related Articles
Joomla Running on Nginx and Ub...
What follows is an outline I compiled while building an Ubuntu server for running the Joomla CMS on the Nginx web server. NOTE: Ubuntu 14.04 LTS was used for th...
My Adventures in Spam Blocking
I hate spam. I detest it. And I'm not talking about the scrumptious processed meat product. I think you all know the spam I'm referring to—the kind peddling ...
Ubuntu 22.04 Nginx Build Outli...
I re-built my LEMP web-server fresh on Ubuntu 22.04 and learned some things along the way. This is my base build outline mostly created for my own notes. INS...
Nginx - How to Block or Redire...
I've been figuring out how to block or redirect web traffic in Nginx based on the country geoIP. NOTES* You need the package nginx-extras for this because this...