Joomla 1.5 vulnerabilities exploits?

Discussion regarding Joomla! 1.5 security issues.
Joomla! Vulnerable Extensions: http://feeds.joomla.org/JoomlaSecurityV ... Extensions

Moderator: General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.
Locked
chaudi
Joomla! Enthusiast
Joomla! Enthusiast
Posts: 100
Joined: Wed Apr 02, 2008 1:21 pm

Joomla 1.5 vulnerabilities exploits?

Post by chaudi » Sat Jul 06, 2013 11:08 am

How can i protect by Joomla 1.5 sites from vulnerabilities exploits?

rsfirewall?
Top
User avatar
Slackervaara
Joomla! Ace
Joomla! Ace
Posts: 1115
Joined: Sat Aug 13, 2011 6:27 am

Re: Joomla 1.5 vulnerabilities exploits?

Post by Slackervaara » Tue Jul 09, 2013 8:01 pm

I have managed with .htaccess + addition from master htaccess, which provide extra protection,
http://docs.joomla.org/Htaccess_examples_%28security%29
JHackGuard free
Admin Exile so hackers cant get to admin login.
Eyesite as defence if I get hacked to detect new or changed files.
http://www.lesarbresdesign.info/extensions/eyesite
Then I use KeePass for storage of password and usernames to protect from spyware.
I also have Linux as reserve if the site is hacked so I can administer the site from Linux as it is virusfree.
Top
chaudi
Joomla! Enthusiast
Joomla! Enthusiast
Posts: 100
Joined: Wed Apr 02, 2008 1:21 pm

Re: Joomla 1.5 vulnerabilities exploits?

Post by chaudi » Tue Jul 09, 2013 8:14 pm

What i understand joomla 1.5 is still safe as many people are still using it. New joomla may also have exploits.
If people want to continue using 1.5 i don't see why joomla can't keep supporting it?
Top
User avatar
Slackervaara
Joomla! Ace
Joomla! Ace
Posts: 1115
Joined: Sat Aug 13, 2011 6:27 am

Re: Joomla 1.5 vulnerabilities exploits?

Post by Slackervaara » Tue Jul 09, 2013 8:31 pm

I have not heard of any vulnerabilty yet, but 2.5 and 3,0 seems to have such as there are upgrades constantly. The drawback with 1.5 is that extensions for it vanishes from extension list, which is bad because they should be kept.

I am pretty dissapointed at the upgrade policy of Joomla. Never thought anyone could invent anything like this. You have to use a third party extension that only makes a partial upgrade and you need a lot of extra work. They should construct a upgrade that dont need third party extension and Joomla should provide the upgrade in itself. Their upgrade policy is a Joomla killer.
Top
chaudi
Joomla! Enthusiast
Joomla! Enthusiast
Posts: 100
Joined: Wed Apr 02, 2008 1:21 pm

Re: Joomla 1.5 vulnerabilities exploits?

Post by chaudi » Tue Jul 09, 2013 8:48 pm

I remember upgrading from 1.0 to 1.5 and it was a big improvement. I don't see the big improvement with 3.0. Every version is like a new operating system with whole bunch of new bugs and quirks to figure out to make it work.
Top
User avatar
Slackervaara
Joomla! Ace
Joomla! Ace
Posts: 1115
Joined: Sat Aug 13, 2011 6:27 am

Re: Joomla 1.5 vulnerabilities exploits?

Post by Slackervaara » Tue Jul 09, 2013 9:05 pm

I have only used Joomla for 2 years, but I have used PHP-Nuke for 8 years. For PHP-Nuke an upgrade was just to upload the files and then run an upgrade script for the database. Thought Joomla was something similar. Big mistake!
Top
User avatar
mandville
Joomla! Master
Joomla! Master
Posts: 15152
Joined: Mon Mar 20, 2006 1:56 am
Location: The Girly Side of Joomla in Sussex

Re: Joomla 1.5 vulnerabilities exploits?

Post by mandville » Tue Jul 09, 2013 9:16 pm

In your big list of url I see you did not mention
Vel.joomla.org
If you think that there are no issues with 2,5 3.x then you should visit developer.joomla.org/security
HU2HY- Poor questions = Poor answer
Un requested Help PM's will be reported, added to the foe list and possibly just deleted
{VEL Team Leader}{TM Auditor }{ Showcase & Security forums Moderator}
Top
Locked

Return to “Security in Joomla! 1.5”