The Joomla! Forum ™

Download

Demo


Board index » Joomla! 3.x - Ask Support Questions Here » Security in Joomla! 3.x

Forum rules


Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Forum Post Assistant / FPA - If you are serious about wanting help, you will use this tool to help you post.



Post new topic Reply to topic  Page 1 of 1
  [ 10 posts ] 
  Print view Previous topic | Next topic 
Author Message
theotterslider
 Post subject: Email Spam?
PostPosted: Thu Dec 27, 2012 9:13 pm 
Joomla! Fledgling
Joomla! Fledgling

Joined: Thu Dec 27, 2012 9:07 pm
Posts: 4
All,

First, I hope this is the right place for this. if not, move it where it needs to go.

I have a fresh joomla 3 install (downloaded and installed it 4 days ago).
I finally have everything working so I was looking though my logs today when I noticed instances that looked like:

Quote:
208.115.113.83 - - [27/Dec/2012:14:33:28 -0500] "GET /index.php?option=com_mailto&tmpl=component&link=aHR0cDovL3d3dy5tYXhzb25zLm9yZy9pbmRleC5waHA/b3B0a W9uPWNvbV9jb250ZW50JnZpZXc9YXJ0aWNsZSZpZD0xOTM2Omx5ZGlhcy0xc3QtZGF5LW9mLXllYXItMS ZjYXRpZD01NzpseWRpYS1tYWtlcy0wMDExJkl0ZW1pZD0xMg== HTTP/1.1" 301 468 http://www.domain.com "-" "Mozilla/5.0 (compatible; Ezooms/1.0; ezooms.bot@gmail.com)" "-"


I did some searching on the internet and found this was a problem with older versions of joomla. I also found this bug report from 2011: http://joomlacode.org/gf/project/joomla ... m_id=24288

My question: Did the bug report fix the problem? Am I just seeing "attempts" at spamming or is it getting through? For now, I've disabled email in the global config. If this is a problem, I'll just block it using htaccess...if it is just attempts then I'm ok with the bogus stuff in the log....
Top
 Profile  
 
pe7er
 Post subject: Re: Email Spam?
PostPosted: Fri Dec 28, 2012 4:37 pm 
User avatar
Joomla! Master
Joomla! Master

Joined: Thu Aug 18, 2005 8:55 pm
Posts: 18094
Location: Nijmegen, The Netherlands
[MOD note: moved from Security in Joomla! 3.0 to Joomla 1.5]

Probably, but you'd better check yourself...
What version do you have? The latest in the Joomla 1.5 range: 1.5.26?

What date/version is stated in your /components/com_mailto/helpers/mailto.php ?
Could you compare it with the date/version of the issue in the bug tracker?

_________________
Kind Regards,
Peter Martin, Global Moderator - Community Leadership Team
http://www.db8.nl - Joomla specialist, Nijmegen, Nederland
Joomla 2.5 multilanguage in 10 steps: http://www.db8.nl/multilanguage-in-10-steps
Top
 Profile  
 
theotterslider
 Post subject: Re: Email Spam?
PostPosted: Sat Dec 29, 2012 7:15 pm 
Joomla! Fledgling
Joomla! Fledgling

Joined: Thu Dec 27, 2012 9:07 pm
Posts: 4
This should be moved back to the Joomla 3 forum as I have joomla 3.0.2.

here's what's in the header of /components/com_mailto/helpers/mailto.php:

/**
* @package Joomla.Site
* @subpackage com_mailto
*
* @copyright Copyright (C) 2005 - 2012 Open Source Matters, Inc. All rights reserved.
* @license GNU General Public License version 2 or later; see LICENSE.txt
*/

No date/no version, etc...

The admin interface reports
Mail to Site Component 3.0.0 April 2006 Joomla! Project N/A 1

Unfortunately, I don't know how to see what version is affected by the bug report I linked to (I don't see a number or version...just a closed status).
Top
 Profile  
 
mandville
 Post subject: Re: Email Spam?
PostPosted: Sat Dec 29, 2012 7:26 pm 
User avatar
Joomla! Master
Joomla! Master

Joined: Mon Mar 20, 2006 1:56 am
Posts: 11641
Location: The Girly Side of Joomla in Sussex
this is probably more administration than security.
the normal "send page to a friend" link
try this page for how to block that bot
http://graphicline.co.za/blogs/what-is-ezooms-bot

_________________
HU2HY- Poor questions = Poor answer
Un requested Help PM's will be added to the foe list and possibly just deleted
{Community.Connect Administrator }{ Showcase & Security Moderator}
Top
 Profile  
 
theotterslider
 Post subject: Re: Email Spam?
PostPosted: Sat Dec 29, 2012 7:35 pm 
Joomla! Fledgling
Joomla! Fledgling

Joined: Thu Dec 27, 2012 9:07 pm
Posts: 4
Thanks mandville....

I couldn't figure out how to tell if the bug report "fixed" the problem (or if it could be fixed). I'll read the link and apply suggestions.

Edit to add:
While I was waiting for a reply, I had come across that link. I had toyed with the idea of just blocking the thing all together, but wanted to give people a chance to reply.

I think I'll just go ahead and renable the email option AFTER I implement a mod-rewrite rule to block the thing
Top
 Profile  
 
PhilD
 Post subject: Re: Email Spam?
PostPosted: Mon Dec 31, 2012 10:00 pm 
User avatar
Joomla! Hero
Joomla! Hero

Joined: Sat Oct 21, 2006 10:20 pm
Posts: 2694
Location: Wisconsin USA
This seems to be a possible security issue or a bug and you should officially report it.

Using
Code:
 /index.php?option=com_mailto&tmpl=component&link=aHR0cDovL3d3dy5tYXhzb25zLm9yZy9pbmRleC5waHA/b3B0a W9uPWNvbV9jb250ZW50JnZpZXc9YXJ0aWNsZSZpZD0xOTM2Omx5ZGlhcy0xc3QtZGF5LW9mLXllYXItMS ZjYXRpZD01NzpseWRpYS1tYWtlcy0wMDExJkl0ZW1pZD0xMg== HTTP/1.1" 301 468 http://www.domain.com
brings up an email form in 1.5, 2.5, 3.0 of Joomla.

_________________
PhilD -- Unrequested PM's and/or emails may not get a response.
Security Moderator
Top
 Profile  
 
theotterslider
 Post subject: Re: Email Spam?
PostPosted: Mon Dec 31, 2012 11:44 pm 
Joomla! Fledgling
Joomla! Fledgling

Joined: Thu Dec 27, 2012 9:07 pm
Posts: 4
PhilD wrote:
This seems to be a possible security issue or a bug and you should officially report it.

Stupid question...how?
Top
 Profile  
 
ozneilau
 Post subject: Re: Email Spam?
PostPosted: Fri Jan 04, 2013 1:37 pm 
User avatar
Joomla! Guru
Joomla! Guru

Joined: Tue Aug 04, 2009 9:05 am
Posts: 612
Location: Tasmania, Australia
Bugs should be reported at the official bug tracker: http://joomlacode.org/gf/project/joomla ... er_id=8103

Neil.

_________________
Please request help via the forums rather than by PM so everyone can benefit from the conversation.
NEIL ROBERTSON
Webilicious Web Design and Development
http://webilicious.com.au
Top
 Profile  
 
brian
 Post subject: Re: Email Spam?
PostPosted: Fri Jan 04, 2013 2:10 pm 
User avatar
Joomla! Exemplar
Joomla! Exemplar

Joined: Fri Aug 12, 2005 7:19 am
Posts: 9205
Location: Leeds, UK
It might bring up the form but the form can not do anything

_________________
"Exploited yesterday... Hacked tomorrow"
Blog http://brian.teeman.net/
Joomla Hidden Secrets http://hiddenjoomlasecrets.com/
Top
 Profile  
 
irantamir
 Post subject: Re: Email Spam?
PostPosted: Mon Apr 15, 2013 1:48 pm 
Joomla! Apprentice
Joomla! Apprentice

Joined: Tue Feb 12, 2013 10:54 pm
Posts: 18
excuse me i have this problem
is it solved or its joomla bug?

_________________
http://tamweb.ir
http://swedenweb.net
Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  Page 1 of 1
  [ 10 posts ] 


Board index » Joomla! 3.x - Ask Support Questions Here » Security in Joomla! 3.x

Who is online

Users browsing this forum: No registered users and 5 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Jump to:  
Powered by phpBB® Forum Software © phpBB Group