Use a custom URL for the admin panel

[AsaduzzamanFoysal]

5. Use a firewall
Another good practice that we will discuss in our post is using a firewall to prevent SQL injection attacks that will protect your website data from all types of attacks using strong security models. You have to be aware of thatSQL injectionsare one of the most common attacks on online merchants.


Image source
When the attack is successful, it will allow attackers to belize phone number list access your personal information and make unauthorized changes to your website, which can destroy customer data, leak confidential business information, modify data, check balances, reverse transactions, and more. To avoid this, make sure you use a firewall to protect your website and defend against such attacks.

Mostly all websites are developed using Magento my-site.com/admin URL option by default for dashboard which is custom admin path. Many website owners forget to follow or ignore this practice of changing admin panel URL and then face challenges.


But it is a risk that opens up more routes for online attackers and welcomes dangerous attacks on your website. Brute force is one of the main examples, where an attacker tries different password combinations to find out the exact details and access the admin panel.

To stay away from such attackers, make sure you use a unique URL path for your admin panel that hackers can’t easily hack. To do this, you need to change your website URL and give it a name that only you can remember. However, it’s easy for attackers to get hold of your Magento admin panel login details and launch a brute force attack.

7. Disable directory indexing