Once you've completed your PrestaShop installation, there are a few things the PrestaShop developers recommend we can do to secure our PrestaShop installation.

Deleting the PrestaShop install Folder

When you get to the last page in the installation process, along with the installation complete message, you'll notice an notification to delete the install folder. We can easily do this through File Manager in cPanel. Select the install folder and either click on the Delete icon in the File Manager menu or right click the folder and select Delete from the menu that appears.

presta-delete-install

Please note, the path shown in the example is the path where I installed PrestaShop for this tutorial. Your path will be where you chose to install PrestaShop (main domain, addon domain, subdomain, or subdirectory).

Deleting readme files after PrestaShop Installation

The PrestaShop developers also recommend that the readme text files be deleted. There are five versions of the readme files (in different languages). These files can be found inside of the docs subdirectory in the directory you installed PrestaShop to:

presta-delete-readme

Once again, please note that the full path to the docs folder can vary depending on where you installed PrestaShop.

Deleting CHANGELOG after PrestaShop Install

The final file that the developers recommend deleting is the CHANGELOG file. This file is also located in the docs subdirectory:

presta-delete-changelog

Renaming Your PrestaShop Admin Folder

Another recommended step to improve security for PrestaShop is to rename your admin folder. By renaming your admin folder something unique (but something you can remember) you can help deter hack attempts that try using standard folder names like "admin" (e.g. brute force attacks). You can easily rename the admin folder by also using the cPanel File Manager. Select the admin folder and click on the Rename icon in the File Manager menu (you can also right click and choose Rename). Pick a unique name and use a mix of letters and numbers, but do not use special characters such as $, %, *, etc. For example you could name your folder 4adm1n0nly. Please note, as this example is given a public venue, you will want to choose a different name for your admin folder:

presta-rename-admin

Password Protecting the PrestaShop Admin Folder

Finally, you can add an additional layer of security by password protecting the admin folder that you just renamed. For more information on how to do that, please see our article on password protecting directories.

Now that you've added some security to your PrestaShop installation, if you want to take a few minutes to browse around your site (the Front Office) before logging into the Back Office, feel free to do so. This way you can get a feel for how your site appears to your customers. When you're ready to dive into setting up and managing your store, we'll walk you through logging into and navigating your PrestaShop back office in the next lesson.

Once you've completed your PrestaShop installation, you will notice that the isntalaltion complete page also advises to delete the "install" folder. We can easily do this through File Manager in cPanel:

[presta-delete-install]

Please note, the path shown in the example is the path where I installed PrestaShop for this tutorial. Your path will be where you chose to install PrestaShop (main domain, addon domain, subdomain, or subdirectory).

The PrestaShop developers also recommend that the readme text files be deleted. These files can be found inside of the docs subdirectory in the directory you installed PrestaShop to:

[presta-delete-readme]

Once again, please note that the full path to the docs folder can vary depending on where you installed PrestaShop

The final file that the developers recommend delting is the CHANGELOG file. This file is also located in the docs subdirectory:

[presta-delete-changelog]

Another highly recommended step in improving your PrestaShop instalaltion's security is to rename your admin folder. By renaming your admin folder something unique (but something you can remember) you can help deter attacks that try using standard folder names like "admin" (e.g. brute force attacks). You can easily rename the admin folder by also using the cPanel File Manager. Select the admin folder and click on the Rename icon in the File Manager menu (you can also right click and choose rename). For example you could name your folder 4adm1n0nly. Please note, as this example is given a public venue, you will want to choose a different name for your admin folder:

[presta-rename-admin]

Finally, you can add an additional layer of security by password protecting the admin folder that you just renamed. For more information on how to do that, please see our article on password protecting directories.

Now that you've added some security to your PrestaShop installation, if you want to take a few minutes to browse around your site (the Front Office) before logging into the Back Office, feel free to do so. This way you can get a feel for how your site appears to your customers. When you're ready to dive into setting up and managing your store, we'll walk you through logging into and navigating in your PrestaShop back office in the next lesson.
Did you find this article helpful?

We value your feedback!

Why was this article not helpful? (Check all that apply)
The article is too difficult or too technical to follow.
There is a step or detail missing from the instructions.
The information is incorrect or out-of-date.
It does not resolve the question/problem I have.
How did you find this article?
Please tell us how we can improve our Help Center:
Email Address
Optional, but our team may contact you for more information.
Did you find this article helpful?

Post a Comment

Name:
Email Address:
Comment:
Are you a bot?
Submit

Please note: Your name and comment will be displayed, but we will not show your email address.

News / Announcements

Update to SSL Certificates - Certificate Warnings
1969-12-31 11:00 am EST
Hits: 628
What is the Heartbleed bug?
1969-12-31 11:00 am EST
Hits: 256

Related Questions

Here are a few questions related to this article that our customers have asked:
Ooops! It looks like there are no questions about this page.
Would you like to ask a question about this page? If so, click the button below!

Help Center Search

Current Customers

Email: support@WebHostingHub.com Ticket: Submit a Support Ticket
Call: 877-595-4HUB (4482)
757-416-6627 (Intl.)
Chat: Click To Chat Now

Ask the Community

Get help with your questions from our community of like-minded hosting users and Web Hosting Hub Staff.

Not a Customer?

Get web hosting from a company that is here to help.