Security Measures To Take Right After An Opencart Installation

Picture1.png

When it comes to security, compromise is the last thing that you should ever do. Do not ever start directly right after a fresh OpenCart installation or an update (Read 5 Steps to upgrade from OpenCart 1.5X to OpenCart 2.X). Prior to that, it is very important to take some security measures that I am going to discuss in this article. You can use these measures as a checklist to be taken care of right after an OpenCart installation.

1. Delete the Install folder-  You can find the install folder usually in “public_html/upload/install”. Right after your installation is complete, delete this install folder. This folder contains critical information about the site database, MVC structure, and some other important information, but they are not needed after the installation is complete. If you have noticed, even the OpenCart installer interface asks you to delete this folder just after the installation process is completed.

Picture2.png

2. Clear demo data of OpenCart- On the first installation of OpenCart, you would find a lot of demo data in the OpenCart system. It has a lot of demo data for sample customers, sample products, sample sales, and much more. These data are just for reference purpose which should be deleted prior to setting up a real web-shop. If you do not delete the demo data, it will just clutter with your real data and cause a lot of confusion.

You can delete the demo images from:

‘upload/image/cache/catalog/demo/’ &

‘/upload/image/payment/panasia/bank-images/’.

To have a fresh database, with no Products information in your OpenCart database all you need to do is execute the following command in MySQL console.

Caution: Do not ever run these commands on your live sites, unless you want to lose everything. These commands will clear your database. So, it is recommended to use only on a fresh OpenCart installation where you do not have anything important in the database.

DELETE FROM oc_address;

DELETE FROM oc_category;

DELETE FROM oc_category_description;

DELETE FROM oc_category_to_store;

DELETE FROM oc_coupon;

DELETE FROM oc_customer;

DELETE FROM oc_download;

DELETE FROM oc_download_description;

DELETE FROM oc_manufacturer;

DELETE FROM oc_manufacturer_to_store;

DELETE FROM oc_product;

DELETE FROM oc_product_description;

DELETE FROM oc_product_discount;

DELETE FROM oc_product_featured;

DELETE FROM oc_product_image;

DELETE FROM oc_product_option;

DELETE FROM oc_product_option_description;

DELETE FROM oc_product_option_value;

DELETE FROM oc_product_option_value_description;

DELETE FROM oc_product_related;

DELETE FROM oc_product_special;

DELETE FROM oc_product_to_download;

DELETE FROM oc_product_to_store;

DELETE FROM oc_review;

DELETE FROM oc_store;

DELETE FROM oc_store_description;

DELETE FROM oc_product_tags;

DELETE FROM oc_order;

3. Check that no demo vouchers are there- In OpenCart 1.5.x, there are some demo vouchers available which are same in all OpenCart 1.5.x installations. Delete them from ‘sales/coupons’ tab, unless you want the hackers to utilize those coupons. If you have the OpenCart 2.0.x version, you might not need to do the same as there are no sample coupons in 2.0.x, but still it’s worth checking once.

Picture3.png

4. Change your admin URL- Admin URL is the first thing hacker check when they come to your website. You do not want to make it so easy for them to guess your admin URL by leaving it as ‘yoursiteurl/admin’ itself. To ensure the site security, you must change your Admin URL from the default ‘yoursiteurl/admin’ to something not easy to guess. It’s an important item in our checklist here.

To change the Admin URL follow these instructions:

A. Open admin/config.php

B. Replace the word ‘Admin’ everywhere in the file with whatever word you want to use in the admin URL. And it’s done here.

Please note: If you are using VQMOD to perform the changes here, you must follow these additional steps:

C. Open vqmod/install/index.php file

D. Replace $admin= “admin” With $admin = “yourchosenword

E. For older version of VQMOD (older than 2.3.0), open all the files one-by-one in the vqmod/xml and replace all “admin” with your chosen word.

PS: “yourchosenword” is whatever word you want to use for your admin panel

5. Remove Default customer groups- Default customer groups don’t give a security threat though, but it is a recommended practice to remove the default customer groups. Now that you have cleared your database, default products and everything, creating your new customer groups as per your requirement is a good practice. Keeping default customer groups will just confuse you.

With OpenCart 1.5.x and 2.0.x both, you will find this section at ‘sales/customers/customer groups’.

Picture4.png

Now that you are aware of the basic OpenCart security check, you are all set to proceed with your online shop setup. You can proceed with your post installation steps like OpenCart template installation, plugins for advanced features, and so on.

There are few companies which also provide the OpenCart installation services, where they take care of all these aspects. If you are not confident about a perfect installation by yourself, you may use their services if required.

5 Reasons to Hire an OpenCart Development Company to Stay by your Side

5 Reasons To Hire An Opencart Development Company To Stay By Your Side | Velsof

Reasons to hire an OpenCart development company.

In eCommerce business, nothing matters as much as always staying ahead of the rival sites. This becomes even more important when you are using an eCommerce platform like OpenCart which already possess a huge base of eCommerce websites. So, unless you OpenCart store has an edge over the other competitors, it won’t be possible to grow up to the fullest potential.

How to acquire that edge? For a competitive online business, it is always a wise choice to have an OpenCart development company by your side. Through the efforts and experience of an OpenCart development company by your side, it becomes very smoother to manage the website and its maintenance without any hassle. Here are five  important reasons for why it is important to have a professional OpenCart development company holding your back:

An eCommerce website maintenance is not a one man job- A professional OpenCart development company in-houses a team of experienced developers, designers, content writers, SEO experts, and business development experts who work collectively to develop an eCommerce site. With the combined efforts and expertise, the OpenCart development company can make sure that nothing goes wrong and website remains functional in any condition.

Time is a crucial factor in eCommerce business- Today competition in eCommerce market has sky-rocketed. A right implementation at right time can gain you the fortunes, while a right decision after a right time is gone would gain you nothing. So, it becomes very important to stay updated with the latest requirements and trends and implement the profitable features whenever required. The OpenCart development company by your side is always ready for the same and they can complete the task in a very quick time as compared to the situation when you are only one managing your site.

Continuous service- As explained in the previous point- time is important. If your website goes down even for a minute, it might be possible you would loose some real big sales. So, it’s important that the OpenCart site remains live and never goes down because of an issue. The OpenCart development company by your side would the one who can look for the same and keep your website error free and ready.

Latest updates and security patches- Internet is extremely volatile and it keeps changing everyday. Only a professional team of web developers know the changing trends and technologies. They know how to add a new feature, which feature has become outdated, which plugin needs an update, which OpenCart plugin would be useful for the business, and much more. The have the idea to make your website user-friendly and they can implement those ideas on the website. So, you can trust your OpenCart development company for keeping your website updated and regularly applying the latest security patches.

Search engine visibility- The SEO experts from the OpenCart development company can look after the search engine optimization of your OpenCart store and make sure it is visible to the users on the search engines. We already know how important is the SEO for surviving the competition from other sites. An OpenCart development company leverages its team of OpenCart expert developers and expert SEO experts to prepare and implement latest SEO tactics to keep your website among visible listings in the different SERPs.

In overall, investment in a good OpenCart development company never let you back down from the competition. The support from the experts makes you feel relaxed that nothing bad is going to happen and they have an eye on the site and it;s maintenance.