Debug Mode in Joomla can be very helpful in giving you information about your Joomla site and page load performance, but it can also give that helpful information to hackers. So, it's best to leave debug mode disabled in Joomla when you aren't using it. How to disable Debug Mode in Joomla is what today's #maintenancemonday is all about.
Joomla Session Time is the period of time a user remains logged into Joomla with no activity from them. If you do not log out of your Joomla site when you are finished working on it, and you have your session time set to a very high number, you run the risk of allowing the next person to sit down at the same computer to gain access your site. How to decide how high is too high a session time and how to set/edit the session in your Joomla configuration is what today's #maintenancemonday is all about.
If at all possible, do not leave the FTP settings for your hosting account in your #Joomla configuration. Even if you have "Enable FTP" set to "no," your ftp details may still be in the actual configuration.php file of your Joomla install. Should your site be hacked and this info compromised, you could end up in the greatest world of hurt because hackers would then have full access your Joomla folder and present any number of types of hacks instead of your site. How to wipe your FTP settings clear in your Joomla configuration is what today's #maintenancemonday is all about.
"Two Factor Authentication, also known as 2FA, two step verification or TFA (as an acronym), is an extra layer of security that is known as "multi factor authentication" that requires not only a password and username but also something that only, and only, that user has on them, i.e. a piece of information only they should know or have immediately to hand - such as a physical token. - https://www.securenvoy.com/two-factor....
Two Factor Authentication is available for #Joomla using Google Authenticator or YubiKey, but it must be enabled in Joomla for users to take advantage of that. How to enable Two Factor Authentication for Joomla users who want to use one of those 2FA methods when logging in is what today's #maintenancemonday is all about.
Since #Joomla 3.8.8, the setting for the core "Mail To Friend" sharing tool has been set to "Hide" in new Joomla installs. While still performing its function, it could easily be used by spammers to send out unwanted emails. You can still use this tool on your site, but in a day of multitudinous social media platforms, sharing by page addresses by email is well off trend and not very effective anyway. How to set the core "Mail To Friend" sharing tool to "Hide" is what today's #maintenancemonday is all about.