Stuff to make site more secure

1. Create a php.ini on the account at /home/{user}/public_html -
(change {user} to your account username)

2. In the php.ini file put:

register_globals = Off
allow_url_fopen = Off

3. In public_html folder, open .htaccess file and add this -
(change {user} to your account username)

suPHP_ConfigPath /home/{user}/public_html

<files php.ini>
order deny,allow
deny from all
</files>

4. In the exploited file in question
(/home/{user}/public_html/joomlalocation/components/com_somecomponent/componentfile.php),
add this:

defined( '_VALID_MOS' ) or die( 'Direct Access to this location is not allowed.');

These steps should ensure the component is not exploitable. Thank you for taking the time to review these steps and if you need any help, please let us know.

We strongly encourage our customers to protect their web hosting account. In support of that we are offering a new tool Secure Live. SecureLive is real time protection from hackers and exploits. More information can be found at http://www.lpwebhosting.com/websolutions/securelive .

This application will not remove existing exploits or malicious code; it will protect you from future exploits. We can begin installation on your account today. Respond to this ticket with authorization to charge your credit card. We will need the last 4 digits of your credit card for verification.