To prevent site hacking by hackers you have to do following few steps.
- Rename the admin directory
- Add .htaccess protection to the admin directory
- Also add .htacess for protecting the catalog directory
- Also delete the admin/filemanger.php and associated link of that file
- Also delete the admin/define_language.php file and it’s all links
For maintaining the security of osCommerce site many contribution are available.
- For prevent any injection attacks with Security Pro.following contribution is used.
- Give htaccess protection by following contribution.
- For avoiding cross site scripting attacks with Anti XSS used the following contribution.
Also we recommended following contributions for security
- Register Global’s Patches
- Admin access level
- Security pro