Make Security Part Of Your New Year’s Resolutions

We’re at the doorstep to a new year, so there’s no better time than the present to check your site for security risks and brush up on your security habits.

Areas to focus on to get you started:

  1. Have all security patches been applied? (ask us to check or start with a free patch scanner at magereport.com)
  2. Have you changed your password recently?
  3. Have you run anti-virus/anti-malware scans on all computers/devices that access your store’s backend?
  4. Is your store’s backend URL unique?
  5. Do you have a backup plan in place?
  6. Is all the software in your site’s software stack updated/patched? (including Magento, WordPress, server side code such as PHP, etc)
  7. Are you adhering to the appropriate PCI Compliance level?
  8. Have you run, at the very least, an external malware scan on your site? (running one from the server side is always recommended, but a quick scan from Quttera or similar tool will quickly show you if you have any major problems)
  9. Have you been blacklisted? (here’s a good tool)

Hope that helps! Contact us if we can help out with anything or if you have any questions. Here’s to a safe & secure 2017!

Ps – Here’s some more security tips from a previous blog post: Magento Security Tips

Magento Site Maintenance

Magento is awesome at many things, but database efficiency is unfortunately not one of those areas – specifically log clearing. I recently did some maintenance on a site that had a 3Gb database — even for a medium-sized site this is quite large. I searched for the log tables & noticed that they were taking up a HUGE chunk of the database. So, I emptied them. After doing this simple task, the database size shot down to 300Mb — that’s a 90% decrease in database size! Now, I’m sure many cases won’t be this dramatic, but if you haven’t setup a cron job to automatically clear these log tables or manually go in & cleared them yourself in awhile, we’d highly recommend you do this ASAP. Below I’m going to show you how to do it. If you don’t feel comfortable doing this yourself, we’ll be more than happy to help you.

If you haven’t done it in a while (or if it’s never been done), we recommend do it manually. Here’s how that’s done:

  1. As always, before you start: make a copy of the database
  2. Log into phpmyadmin
  3. Find your database & open it (if you have more than one)
  4. Look for these tables:
    log_customer
    log_visitor
    log_visitor_info
    log_url
    log_url_info
    log_quote
    report_viewed_product_index
    report_compared_product_index
    report_event catalog_compare_item
    log_summary
    log_summary_type
    log_visitor_online
  5. Select them
  6. At the bottom where it says “With Selected”, select “Empty” (be very, very careful you DON’T select “Dump”!) and then hit “yes”
  7. You’re done!

Check your database size back in cPanel (or whatever control panel you use) & let us know your success stories in the comments below! Happy Magento Maintenancing!