Brian Teeman - Security

1. Let's get it right and plan for the future: (Joomla); ... My understanding, and hope, is that by the time we release 3.5 it should be a rock solid release and will need little more than minor maintenance and security releases for the rest of the release's life. ...; Created on 13 May 2013
2. Joomla training in Australia: (Joomla); ... and menu creation, backups and security etc. By the end of the session we will have gone through the entire process of building a Joomla web site. Introduction to Joomla 3 Joomla 3 is the new kid on ...; Created on 18 Dec 2012
3. Fix a hacked Joomla web site: (Joomla); ... and every owner of a Joomla! website. Check out Joomla-Security right now or just jump right in and sign up - the first audit is free. (the links are not affiliate links but they do have a ...; Created on 09 Nov 2012
4. A tale of a hacked Joomla site: (Joomla); ... joomla installations are at the latest version and all the extensions are up to date with no currently known security vulnerabilities. However several of the extensions did have vulnerabilities in the ...; Created on 08 Feb 2012
5. Upgrading to Joomla 2.5 - Some Warnings: (Joomla); ... you are running. Due to a very low level security issue this is no longer there. If you need to check which version of Joomla is installed you can find this information from the System Information menu. ...; Created on 27 Jan 2012
6. Joomla! One click that's all it took: (Joomla); ... And now I see that Joomla 1.6 will be unsupported with no future bug and security fixes can my day get any worse? Now I'm going to have to stay in front of the computer migrating web sites instead ...; Created on 19 Jul 2011
7. A little bit pregnant: (The Web); ... authors who don't have a good security awareness and simply don*t know about potential flaws (or even worse: they just ignore them). Joomla! Security Extension Comparison Jeff Channell has conducted ...; Created on 20 Dec 2010
8. Top 10 Joomla extensions: (Joomla); ... admin interface and does not attempt to reinvent the wheel with its own interface Promptly notifies me of all new releases and updates and clearly marks any security issues as security issues and not ...; Created on 28 Jul 2010
9. JomSocial - You cannot be serious - chmod 777!!!: (Joomla); Spend any time on the joomla forums and you will see "help my web site has been hacked". The first response is always the same "please read the security checklist" In numerous places you will see "Use ...; Created on 12 Jul 2010
10. Protect Joomla! passwords on public WiFi networks: (Joomla); We are used to communication being secure If we phone with our mobiles, we assume that only the people we dialled can hear us. When transferring money we provide information via the bank's web page ...; Created on 23 Jun 2010
11. Gold, Chocolate and Joomla!: (Joomla); ... coup, backed by the CIA, he joined the Government as a minister for a short time before leaving politics and later returning in a civilian Government as Minister in charge of National Security. Quite a ...; Created on 17 May 2010
12. Who is the Joker in the Joomla pack?: (Joomla); ... is nothing you can do about it. On every install a superadmin user is created with username "admin" and userid "62". I have blogged before why it's so important for your web site security to remove ...; Created on 04 Mar 2010
13. Who do you trust with your email?: (The Web); ... or service do you consider the security of that list? If I am visiting a site that requires an email address for access I only ever use a throwaway temporary address from a service like mailinator ...; Created on 10 Feb 2010
14. Can you trust your joomla extensions?: (Joomla); ... directory ready to exploit tomorrow. The procedures and methods I describe to improve the safety and security of the joomla extension installation process (boy that was some long words) is relatively ...; Created on 03 Nov 2009
15. Help my Wordpress site has been hacked!: (Joomla); On Wednesday I explained how your Joomla site might be exploited "Just because you keep your server secure and your software up to date you may have been exploited yesterday, ready to be hacked tomorrow." ...; Created on 23 Oct 2009
16. Help my Joomla web site has been hacked!!: (Joomla); ... this as soon as he saw it but it just kept on happening. He suspected that there must be a security whole in Joomla or one of his extensions that was allowing a hacker to automate this "link insertion" ...; Created on 21 Oct 2009
17. Joomla Hidden Secrets - the movie: (Joomla); You may have been lucky enough to have seen this presentation live in The Netherlands or Germany or even listened to it at slideshare but now you can watch the presentation in all it's glory. Thanks ...; Created on 13 Oct 2009
18. What should I use for Joomla comments: (Joomla); ... they had to comment. With disqus you can authenticate using twitter, facebook, openid or a disqus account. This way you don't need another login, with associated security issues, and I don't need to enable ...; Created on 24 Aug 2009
19. Joomla warez and downloads: (Joomla); Whilst looking through the list of high traffic joomla sites at joomla.me I was disappointed, but not surprised to see that many of them were warez sites offering links to rapidshare, hotfile, megaupload ...; Created on 12 Aug 2009
20. So long, farewell - joomla 1.0: (Joomla); ... end of life. There will be no further updates or security releases fro this Tuesday but what does that mean for sites that are still running Joomla 1.0? In reality I suspect very little. If you are ...; Created on 20 Jul 2009
21. Joomla web site hacked: (Joomla); ... he didn't seem to be bothered about that. I also saw a "security expert" recommending blocking a certain IP address associated with this attack with an htaccess rule. This is foolish advice as obviously ...; Created on 09 Jul 2009
22. Talk to developers: (Joomla); ... the hard way on another site that this number of modifications is not good for the long term. If any new features were added to JCal or more importantly any security issues then it would be very time ...; Created on 06 Jul 2009
23. Automatic Joomla updates: (Joomla); When a new (security) release of joomla is released how do you do the update? Do you actually look at the changes or do you blindly do an update either via ftp or using an automated "update extension" ...; Created on 03 Jul 2009
24. Joomla registration - the missing step: (Joomla); One of the slides I had to drop from my "Hidden Joomla Secrets" presentation was an ugly hack to solve what for me has been a long standing issue with Joomla user registration. By default joomla provides ...; Created on 23 Jun 2009
25. Open Source release dates: (The Web); ... bleeding edge. They don't mind applying security fixes or bug fixes but they don't want or need new functionality every month. What about you? What do you want and need? It's a difficult balance isn't ...; Created on 29 May 2009
26. Is your robot fully charged?: (Joomla); ... google and the other search engines and web crawlers NOT to index certain directories, which is a pretty good idea for security purposes. Advanced users may even have edited this file to instruct google ...; Created on 16 Mar 2009
27. Happy birthday - joomla 1.0.15: (Joomla); ... more months now. So what does this mean? Well to me at least it means that the joomla 1.0 codebase is rock solid with no known security issues for 365 days. There aren't many open source content ...; Created on 22 Feb 2009
28. chmod 777 makes my blood boil: (Joomla); I don't know why but in the last few weeks I have seen a growing number of extension developers write code like this. if (!is_dir($dstdir)) It is hard enough educating users not to do this without ...; Created on 18 Feb 2009
29. Secure your joomla admin: (Joomla); Is your admin interface in joomla secure? Could you make it more secure? Could Joomla itself force some extra security? Obviously the first stage in securing your web site is to ensure that you are ...; Created on 19 Jan 2009
30. A week of security: (The Web); Apologies to regular readers for the lack of updates this week but it's been a very interesting few days. Almost all my work this week has in some way or other been in the security sphere. The week ...; Created on 09 Jan 2009
31. Do you test your backups?: (The Web); Last year I blogged about my personal backup procedures. No matter how many times I say it people still don't listen. Backing up your data is your responsibility and yours alone. No matter how ...; Created on 02 Jan 2009
32. Little Brother - a holiday gift: (Bookshelf); ... caught in the aftermath of a major terrorist attack on San Francisco. In the wrong place at the wrong time, Marcus and his crew are apprehended by the Department of Homeland Security and whisked away to ...; Created on 24 Dec 2008
33. Swekey - the key to securing joomla: (Joomla); As you will have gathered by my blog posts I take the security of my joomla sites very seriously it even prompted another blogger "realise I needed to get smarter about passwords". Even if you follow ...; Created on 02 Dec 2008
34. Is your Joomla password secure?: (Joomla); ... as strong as the security on the weakest site. And if you recently had an account at typo3.org you just found the weakest site as their site was compromised over the weekend. It doesn't matter how ...; Created on 24 Nov 2008
35. Joomla Security Alert!!: (Joomla); It should be obvious but it seems that people need a reminder. You should only ever download files from their original source!! If you don't how will you ever be certain that what you are downloading ...; Created on 23 Nov 2008
36. Uninstall or Hide: (Joomla); ... you need them using this method. SECURITY TIP: If you no longer use a component uninstall or disable it now. Many sites, that are hacked by weak third party extensions, are hacked because the site ...; Created on 12 Nov 2008
37. Are you a Dork?: (Joomla); ... as a vulnerability in an extension is revealed in either the hacker forums or on responsible security sites such as milw0rm or The Open Source Vulnerability Database the hackers of the world use google ...; Created on 30 Oct 2008
38. Backups: (Joomla); What do you use for backups of your Joomla web site? Until Joomla 1.6 (thanks Sam for adding this) there has been no backup routine built in to Joomla and yet backing up your website is the most important ...; Created on 28 Oct 2008
39. Joomla Security - jos_: (Joomla); ... from some of the more common security hacks. If you follow millw0rm or any of the other security sites you will have noticed that many of the exploits rely on your database tables being called jos_XXXXXX. ...; Created on 24 Oct 2008