Tutorials – One major security issue in is that once a user realizes that you are using for your website, they can easily try to access your backend by appending a /administrator to the end of the URL. This is a major security issue since hackers can then try to hack through your site by using different combinations of username and passwords.
Question: How to change the2.5 Administrator URL?
Answer is: you can’t.
There are manythat rely on the /administrator directory and if you change the directory name, you will break your whole site. I’ve tried in the past and it brought down my whole site.
There are many differentyou can use to prevent users to accessing your Joomla 2.5 administrator backend directory. There is one extension that I would recommend to use and it’s called jSecure.
Jsecure Protect Joomla 2.5 Administrator Directory
The Jsecure is not a free Joomla component. There is a fee of $9.99 to download the component. But for what it offers, this does deserve a payment. Description of jSecure Authentication Module:
jSecure Authentication module prevents access to administration (back end) login page without appropriate access key.
Easy to install, jSecure adds a higher level of security to your Joomla website.
jSecure Authentication 2.X has a range of improvements including:
* Option to be emailed each time someone tries to access your admin page
* Option to block IP’s from accessing your administration area.
* Option to use a second login form to further protect you admin page.
* Master Password to access the jSecure Authentication Component
* Added log feature (the System will log who access jSecure)
* Improved backend presentation
* Improved support on our forum
Where to find jSecure Authentication Module
You can find jSecure in thedirectory (JED) or at http://www.joomlaserviceprovider.com. There you can read up on all the features (and view a demo) of this Joomla 2.5 module which will provide superior protection to your Joomla 2.5 administrator directory.