Unauthorized registration when site is offline mode

Discussion regarding Joomla! 3.x security issues.

Moderators: Bernard T, mandville, PhilD, fcoulter, General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Forum Post Assistant / FPA - If you are serious about wanting help, you will use this tool to help you post.
adinba
Joomla! Fledgling
Joomla! Fledgling
Posts: 4
Joined: Tue Oct 17, 2017 7:55 pm

Unauthorized registration when site is offline mode

Postby adinba » Tue Oct 17, 2017 8:12 pm

Hello,

Yesterday, we noticed an unauthorized registration on our website when it was set in offline mode, Akeeba Admin Tool Pro showed that the IP was from Crimea, Activated and Enabled status showed as blocked.

Our site appears to be behaving as expected. Our concern is that the hacker have done something further to our site. Please advise on what actions we should now take. We want to know how it is possible to register when site is offline and how to preventing it from happening again.

Thanks,

Tri


User avatar
fcoulter
Joomla! Ace
Joomla! Ace
Posts: 1361
Joined: Thu Sep 13, 2007 11:39 am
Location: UK
Contact:

Re: Unauthorized registration when site is offline mode

Postby fcoulter » Wed Oct 18, 2017 12:12 pm

Activated and Enabled status showed as blocked.


If the user was not activated then they would not have been able to do anything on your site.

Earlier versions of Joomla included a vulnerability that allowed users to register even when this should be disallowed. The fact that you are seeing this suggests that you have not been keeping your software updated. Therefore what you need to do is to update to 3.8.1, and delete the unauthorised user.

If you require further assistance then do as Webdongle suggests and use the fpa.

Also I suggest looking for further signs up hacking, eg the presence of malicious code. If you want to be cautious then it makes sense to treat your site as already being hacked, and follow the advice here: https://forum.joomla.org/viewtopic.php?f=714&t=946026
http://www.spiralscripts.co.uk for Joomla! extensions
http://www.fionacoulter.com/blog my personal website
Security Forum moderator
VEL team member
"Wearing my tin foil hat with pride"

adinba
Joomla! Fledgling
Joomla! Fledgling
Posts: 4
Joined: Tue Oct 17, 2017 7:55 pm

Re: Unauthorized registration when site is offline mode

Postby adinba » Wed Oct 18, 2017 9:28 pm

We will try the solution from this post viewtopic.php?f=715&t=954995. Thank you


Return to “Security in Joomla! 3.x”

Who is online

Users browsing this forum: No registered users and 7 guests