Joomla: hardening your joomla using build-in text filter

Requirement:

• Joomla 3.8 or later.

Never trust any input event from user. You need to sanitize any input to your Joomla system. Here the easy steps:

• Go to "System" -> "Global Configuration", open "Text Filter"
• Change all "Filter Type" to "Default Blacklist"
• Done

Tested on Joomla 3.8.10.
Thanks to mrkronkz or mr kronkz or woyname<at>gmail.com or what ever to log your attack into my system :D.

Move/Restore Joomla site to a new server using Kickstart 5.4.2

Tested on Joomla 3.8.3 and Kickstart 5.4.2.
Note: you don't need to install Joomla first, Kickstart will extract your Joomla.
Required:

1. previous back up using Akeeba Backup for Joomla (jpa or zip file)
2. MySQL user and password
3. Read/write permission on web root

Here are the steps:

1. Download Akeeba Kickstart from https://www.akeebabackup.com/products/akeeba-kickstart.html. Kickstart contains kickstart.php and its supporting files.
2. Upload and extract Kickstart to your previoes Joomla root for example upload and extract kickstart-core-5.4.2.zip into [your_home]/public_html/joomla.
3. Upload your backup files to your web root for example upload site-garasiku.web.id-20180104-031734utc.jpa into [your_home]/public_html/joomla. It may take time, depends on your connection speed.
4. From your browser open URL http://[your_site]/joomla/kickstart.php and click "Click here or press ESC to close this message".
5. Fill form
   1. Archive file: [your jpa/jps files] e.q. [your_home]/public_html/site-garasiku.web.id-20180104-031734utc.jpa
   2. Temporary directory: [your_ftp_temp_folder] e.q. [your_home]/public_html/tmp
6. Click "Start" to start extracting your Joomla site backup and click "Run Installer" to reinstall and configure your Joomla site.
7. It will open ANGIE – Akeeba Next Generation Installer Engine v.5.6.3 in a new tab. Click "Next".
8. Fill your MySQL access
   1. Database server host name: localhost [Note: check your hosting provider]
   2. User name:    [your MySQL user]
   3. Password:    [your MySQL user password]
   4.  Database Name:    [your MySQL database name]
9. To continue click "Next", It will give a warning, you may click "Ok" or "Cancel".
10. If Success, click "Next Step".
11. It will restore your configuration files. Update your preferences if you wish, and fill your Joomla administrator password.
12. Click "Next" to finish configuration. It will ask your to clean up your Kickstart. It will clean
    1. Kickstart files
    2. folder Installation
13. Done and conguratulation!  

REMOVE your JPA/JPS  files from public_html!

Additional Option to change Akeeba backup folder

1. Create folder for example akeebabackup on your home directory for example [your_home]/akeebabackup.
2. Open your Joomla Administrator page and update Joomla system if necessary.
3. "Components -> Akeeba Backup" in "Basic Operation" select "Configuration".
4. Change Output Directory into your akeebabackup folder for example /home/example/akeebabackup
5. To change non default backup schema, under "Components -> Akeeba Backup" in "Basic Operation" select "Profiles Management"

Reference:
https://www.akeebabackup.com/videos/1212-akeeba-backup-core/1618-abtc04-restore-site-new-server.html

Connecting domain to web hosting from 2 different provider

I have domain registar in at Indosatm2. After my sponsor refuse to fix the server, I decided to hosting my web on web hosting. After searching web hosting, I choose masterweb for web hosting.
The problem arrise how to connect my domain to web hosting. After searching some information, here is how I do that.

1. At web hosting, find out name server for your web hosting. If you can not find them, issue ticket to ask name server for your web hosting.
2. Login into your domain registar.
3. Go to Manage your domain for example garasiku.web.id.
4. Select "Name Server" and use "Use custom nameservers (enter below)"
5. You need at least 2 name server.
   1. Nameserver 1: [Nameserver_from_web_hosting]
   2. Nameserver 2: [Nameserver_from_web_hosting]
   3. Nameserver 3...etc: [optional]
6. Make sure "Registar Lock" is disable to make it easy to transfer from domain registar provideer to web hosting provider.
7. Go to "DNS Management" and fill Hostname, Record type "A" and IPv4 address. For eample
   1. Host Name: garasiku.web.id
   2. Record Type: A
   3. Address: [xx.xx.xx.xx]
8. It takes time to propagate your domain about 24 hours. In my case it took about 6-8 hours. You may check using nslookup your domain points to your web hosting.
9. Done.