Anti-Hack?

Well, Sooner or Later a website will get hacked, most likely the site cannot be prevented from hackers. The site would have to be in contact and eye-to-eye coordination to work for non hackers, I'm sorry, but hackers are always finding a new a better way to get into a network or even secured they have a way to bypass the network too.

anything to at least increase security?

Wat do you mean? It wont increase security

i said is there anything that i can do to at least increase the security of my site?

Umm... PHPFusion has a security filter, but I'm not sure were to look for it at.

No one is answering my question!!! just give me a link to a mod or infusion or something that would increase the security of my site....! :D

Have a look at the Security System infusion from http://www.bs-fusion.de. I'm using it on all my sites and I'm very, very happy with it!
Lots of features, proxy black/white listing, filters, etc.

Free and well supported.

if only it was written in english...

i dont know if im missing something but it looks German to me...

Ich habe das aktuelle Paket auch nochmal selbst auf einem Testserver installiert und es wird die Version 1.8.2 angezeigt.
Habe mir die infusion.php angesehen -> Version 1.8.2, in die secsys_settings-Tabelle gegangen unter Version 1.8.2 also alles ok bei mir, daher kann ich es nicht nachvollziehen, das bei dir 1.8.1 erscheint. Dieser Fehler wurde bisher von keinem anderen Benutzer bestätigt. Daher ist es kein Bug, da die Version aus der Settingstabelle ausgelesen wird, auch für das Update.

Könnt auch ein Browsercache-Problem sein.

Firstly, you can start by not promoting your site all over here. If you ask me, that's the #1 way to get hacked. Most hackers who specialize in php-fusion find php-fusion sites like yours simply by looking at this site and finding a nice crop to harvest. I've had a few Turkish hackers visit my site, but since I'm mostly runnning the core version, they couldn't find any exploits, so all they could do was leave a lovely picture of Ataturk in my guestbook. I'm positive that they found my site because I promoted it in the "Post your site" forum. Once the hackers find you, they will check your site every so often until they catch you slipping with an exploitable third-party infusion or something. Once they've found you, you can only hope they give up and forget about you after a while.

Secondly I would use an image button for your "Powered by" link, rather than searchable text. Thirdly, don't use the same password for your site admin, sql, and ftp accounts. Finally, don't use ANY third-party infusions.

If you run the core version and keep it updated you're pretty secure.

interesting post. can you explain why adding an image for the php-fusion link is more secure than searchable text?

So they can't google your site using that keyword.

oh lol my site isnt big enough to come up in a search for php-fusion

You should also upgrade to v 6.01.15

The site is in German, so i can understand it's confusing.
The infusion has English, Danish, Dutch and German locale files.
The online documentation is in German and English. link: http://docs.bs-fusion.de

Here are a few things you can maybe consider:

First put on a little .htaccess code that only allows your IP-adress to access the /administration/ folder. If your IP adress is dynamic (changes from time to time) you can add a IP adress range.

Secondly add another .htaccess code adding a username/password on the /administration/ folder.

Keeping hackers out of this folder maybe helps a bit I think.

can you provide me with these codes? if not on here by PM?

also, if i implement these codes will my other admins be able to login?

.htaccess

/usr/home/web/ = complete path to your site. It might be different from host to host.
xxx.xxx.xxx.xxx = your complete IP-adress (most secure)
xxx. = Allowing all IP-adresses starting with xxx. (but less secure)

.htpasswd

Password generator:
http://www.htaccesstools.com/htpasswd...generator/

If your site have several admins you need to give them the extra username/password and add their IP-adresses to the list to make them able to log into "Admin panel" (/administration/ folder).

Edit: Be aware that .htaccess coding might not work on all hosts.

on another website no securiti 100 %

securiti is 10 %

exploit hack 4ever ;)