The Joomla! Forum ™

Download

Demo


Board index » Joomla! 2.5 - Ask Support Questions Here » Security in Joomla! 2.5

Forum rules


Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Forum Post Assistant / FPA - If you are serious about wanting help, you will use this tool to help you post.



Post new topic Reply to topic  Page 1 of 1
  [ 8 posts ] 
  Print view Previous topic | Next topic 
Author Message
Dhruba RC
PostPosted: Sat Apr 21, 2012 1:39 am 
Joomla! Intern
Joomla! Intern

Joined: Tue Mar 20, 2012 6:41 pm
Posts: 83
Hi,
I am building a site meant to be used primarily for a group of users with a special focus and I am using Joomla for that. Being new to this world I am not exactly sure of what security components to include in my website for protection, there are quite a few available in the JED and it would of much help if you are able to guide me a bit in this process. I am looking for a starting point and any help is much appreciated.

I mistakenly posted this question under a different category; so sorry for that :-[

I would really love to have any cue at all from you and built upon it as per my requirements but I just really need help in this regard.

Many thanks in Advance!
Top
 Profile  
 
Alex Dobrin
PostPosted: Sat Apr 21, 2012 6:47 am 
User avatar
Joomla! Hero
Joomla! Hero

Joined: Wed Jun 07, 2006 9:10 am
Posts: 2457
Location: Brasov - Romania
Hi,

There is no need to add extra security extensions.
Just make sure you are using extensions not listed here:
http://docs.joomla.org/Vulnerable_Extensions_List
And keep Joomla and the installed extensions up to date.

_________________
My extensions - http://extensions.joomla.org/extensions/owner/algisinfo
Top
 Profile  
 
Dhruba RC
PostPosted: Mon Apr 23, 2012 6:21 pm 
Joomla! Intern
Joomla! Intern

Joined: Tue Mar 20, 2012 6:41 pm
Posts: 83
Thank You for the info!

_________________
My new creation, http://digitalfilbert.com/
Top
 Profile  
 
Slackervaara
PostPosted: Mon Apr 23, 2012 8:13 pm 
Joomla! Explorer
Joomla! Explorer
Online

Joined: Sat Aug 13, 2011 6:27 am
Posts: 299
I use:
AdminExile
http://extensions.joomla.org/extensions ... tion/15711
JHackGuard
http://extensions.joomla.org/extensions ... tion/13233

The last two is to discover changed or new files of the site, if the site is hacked. I use the MD5 Comparison Tool in case the hacker has disabled the login for administrator by tampering those files. I must login as administrator to run Eyesite and check the files of the entire site. Eyesite can spot files that the hacker added to the site, which the MD5 tool can't
.
Eyesite
http://extensions.lesarbresdesign.info/ ... ns/eyesite
MD5 Comparison Tool
http://extensions.joomla.org/extensions ... ools/15379


Last edited by Slackervaara on Tue Apr 24, 2012 11:43 am, edited 3 times in total.

Top
 Profile  
 
candyjsn
PostPosted: Tue Apr 24, 2012 7:44 am 
User avatar
Joomla! Explorer
Joomla! Explorer

Joined: Wed Dec 22, 2010 4:09 am
Posts: 387
Location: Ha Noi, Viet Nam
+1 for AdminExile -> http://extensions.joomla.org/extensions ... tion/15711
+1 for Akeebabackup -> http://extensions.joomla.org/extensions ... ackup/1606

:)

_________________
Make Joomla joyful to use - http://extensions.joomla.org/extensions/administration/admin-navigation/20267

Get started with Joomla 3.0 easily - http://www.joomlashine.com/blog/free-ebook-joomla-30-made-easy-a-perfect-start-for-joomla-novices.html
Top
 Profile  
 
Alex Dobrin
PostPosted: Tue Apr 24, 2012 8:01 am 
User avatar
Joomla! Hero
Joomla! Hero

Joined: Wed Jun 07, 2006 9:10 am
Posts: 2457
Location: Brasov - Romania
I wasn't considering Akeebabackup as a security extension, but I guess you right, it could be considered like that.
I subscribe to the recommendation of using it. :)

_________________
My extensions - http://extensions.joomla.org/extensions/owner/algisinfo
Top
 Profile  
 
Dhruba RC
PostPosted: Tue Apr 24, 2012 11:44 am 
Joomla! Intern
Joomla! Intern

Joined: Tue Mar 20, 2012 6:41 pm
Posts: 83
Thank You soooo much! All of you, you are really helpful!
Top
 Profile  
 
PhilD
PostPosted: Tue Apr 24, 2012 10:24 pm 
User avatar
Joomla! Hero
Joomla! Hero
Online

Joined: Sat Oct 21, 2006 10:20 pm
Posts: 2694
Location: Wisconsin USA
Just don't forget or ignore that the best security is an active and ongoing process to keep everything (Joomla, extensions, templates) up to date, use proper permissions on the site, have a disaster plan in place and so on. Backups are just a minor part of any site security plan. Installing a security extension and ignoring other facets of security will only provide false security and eventually result in a site being hacked. We see this all the time here in the forums.

_________________
PhilD -- Unrequested PM's and/or emails may not get a response.
Security Moderator
Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  Page 1 of 1
  [ 8 posts ] 


Board index » Joomla! 2.5 - Ask Support Questions Here » Security in Joomla! 2.5

Who is online

Users browsing this forum: No registered users and 18 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Jump to:  
Powered by phpBB® Forum Software © phpBB Group