Joomla security tip: Delete the admin

Joomla sites are popular targets for hackers.  One of the ways they'll try to gain access to your site is by trying to brute-force password-crack your admin account.  Many people just leave the default "admin" account untouched after installing Joomla, which allows hackers to try myriad passwords against the "admin" username until they find one that works.  Or they can use an SQL injection - if your site's vulnerable to such attacks - to change the admin password and gain access that way.

The easiest way to get around this is to just delete the admin user immediately after you've set up a new Joomla installation.  

Before you delete the "admin" user, though, be sure to create at least one new superadmin-level account to replace it with.  This is the account that you'll use to login as the site administrator.

Once at least one new superadmin account has been set up, logout, login again with the new superadmin account info, then delete the default "admin" account.  

Congrats - you've just made it that much less likely that your site'll be hacked.