http://gwiki3.thatlinuxbox.com/index.php?action=history&feed=atom&title=Security_GuidelinesSecurity Guidelines - Revision history2026-04-06T08:20:50ZRevision history for this page on the wikiMediaWiki 1.27.5http://gwiki3.thatlinuxbox.com/index.php?title=Security_Guidelines&diff=5533&oldid=prevDirk: link to Clickjacking Protection2009-06-14T15:51:11Z<p>link to Clickjacking Protection</p>
<table class="diff diff-contentalign-left" data-mw="interface">
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr style='vertical-align: top;' lang='en'>
<td colspan='2' style="background-color: white; color:black; text-align: center;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black; text-align: center;">Revision as of 15:51, 14 June 2009</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l8" >Line 8:</td>
<td colspan="2" class="diff-lineno">Line 8:</td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>* Remove the installation script. Once you have successfully installed or upgraded Geeklog, you will no longer need it.</div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>* Remove the installation script. Once you have successfully installed or upgraded Geeklog, you will no longer need it.</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>* Change the permissions for the <tt>db-config.php</tt> and <tt>siteconfig.php</tt> files so that they are no longer writable.</div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>* Change the permissions for the <tt>db-config.php</tt> and <tt>siteconfig.php</tt> files so that they are no longer writable.</div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"></ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"></ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;">== Configuration Options ==</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"></ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;">* Geeklog 1.6.0 (as of beta 3) provides some [[Clickjacking Protection|protection against Clickjacking]]. It's enabled by default and should usually be left that way.</ins></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"></td></tr>
</table>Dirkhttp://gwiki3.thatlinuxbox.com/index.php?title=Security_Guidelines&diff=5517&oldid=prevDirk: About time to start this page ...2009-06-05T13:42:52Z<p>About time to start this page ...</p>
<p><b>New page</b></p><div>Recommendations to secure your Geeklog site.<br />
<br />
== After Installation ==<br />
<br />
Please follow the recommendations outlined in the installation instructions and contained in the reminders that are built into Geeklog:<br />
<br />
* Change the default password of the Admin account!<br />
* Remove the installation script. Once you have successfully installed or upgraded Geeklog, you will no longer need it.<br />
* Change the permissions for the <tt>db-config.php</tt> and <tt>siteconfig.php</tt> files so that they are no longer writable.<br />
<br />
<br />
== Daily Use ==<br />
<br />
* Consider using an account that has only the permissions that you actually need. For example, you may be spending most of your time on the site writing articles. For that, you do not need to be in the User Admin group.<br />
<br />
<br />
== Staying up to date ==<br />
<br />
We recommend that you subscribe to the (low traffic) [http://lists.geeklog.net/mailman/listinfo/geeklog-announce geeklog-announce mailing list] to be informed about new Geeklog releases and security issues. You can also subscribe to the RSS feed of the [http://www.geeklog.net/index.php?topic=Security Security topic] on the Geeklog homepage.<br />
<br />
<br />
''(to be continued)''</div>Dirk