Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Joomla! Web Security
  • Table Of Contents Toc
Joomla! Web Security

Joomla! Web Security

4.6 (5)
Buy this Book
close
close
Joomla! Web Security

Joomla! Web Security

4.6 (5)
Buy this Book

Overview of this book

Table of Contents (16 chapters)
close
close
close
Joomla! Web Security
Icon
Joomla! Web Security
Credits
Icon
Credits
About the Author
Icon
About the Author
About the Reviewer
Icon
About the Reviewer
Preface
Icon
Preface
Lock Free Chapter
1
Let's Get Started
chevron up
Icon
Let's Get Started
Icon
Introduction
Icon
Common Terminology
Icon
Hosting—Selection and Unique Needs
Icon
Architecting for a Successful Site
Icon
Downloading Joomla!
Icon
.htaccess
Icon
Permissions
Icon
Common Trip Ups
Icon
Setting Up Security Metrics
Icon
Summary
2
Test and Development
Icon
Test and Development
Icon
Welcome to the Laboratory!
Icon
Reporting
Icon
Using the Ravenswood Joomla! Server
Icon
Summary
3
Tools
Icon
Tools
Icon
Introduction
Icon
Tools, Tools, and More Tools
Icon
Summary
4
Vulnerabilities
Icon
Vulnerabilities
Icon
Introduction
Icon
Importance of Patching is Paramount
Icon
What is a Vulnerability?
Icon
End Users
Icon
Summary
5
Anatomy of Attacks
Icon
Anatomy of Attacks
Icon
Introduction
Icon
SQL Injections
Icon
Remote File Includes
Icon
Summary
6
How the Bad Guys Do It
Icon
How the Bad Guys Do It
Icon
Laws on the Books
Icon
Acquiring Target
Icon
Sizing up the Target
Icon
Vulnerability Tools
Icon
Finding Targets to Attack
Icon
What Do I Do Then?
Icon
Countermeasures
Icon
Closing Words
Icon
Summary
7
php.ini and .htaccess
Icon
php.ini and .htaccess
Icon
.htaccess
Icon
php.ini
Icon
Summary
8
Log Files
Icon
Log Files
Icon
What are Log Files, Exactly?
Icon
Learning to Read the Log
Icon
Log File Analysis
Icon
Care and Feeding of Your Log Files
Icon
Tools to Review Your Log Files
Icon
Summary
9
SSL for Your Joomla! Site
Icon
SSL for Your Joomla! Site
Icon
What is SSL/TLS?
Icon
Process Steps for SSL
Icon
Performance Considerations
Icon
Other Resources
Icon
Summary
10
Incident Management
Icon
Incident Management
Icon
Creating an Incident Response Policy
Icon
Developing Procedures Based on Policy to Respond to Incidents
Icon
Summary
1
Security Handbook
Icon
Security Handbook
Icon
Security Handbook Reference
Icon
General Information
Icon
Tools
Icon
Ports
Icon
Logs
Icon
List of Critical Settings
Icon
General Apache Information
Icon
List of Ports
Icon
Summary

Chapter 1. Let's Get Started

Today, personal computer systems and servers are being compromised at an alarming rate. Servers such as yours that are hacked into are often used to sell "time" by organized criminals around the world. They are selling time on desktops and servers by the minute, hour, purpose, speed available, and other attributes. The reason for their sale is to send out SPAM (unsolicited bulk email), to use as denial of service attack points, or for any other unintended purpose.

Introduction

Joomla!, a very popular Content Management System (CMS), is as you may know an easy-to-deploy-and-use content management system. This ease of use has lent itself to rapid growth of both the CMS and extensions for it. You can install it on almost any host, running Linux or Windows. This highly versatile software has found itself in such lofty places as large corporate web portals, and humble places such as the simple blog.

All of these share a common thread. They exist on the Web, which is one of the most lawless places on the planet. Every day the "bad-guys" are out pacing the good guys—and for a good reason. An ordinary user, who wants a powerful and yet an easy-to-set-up website might choose Joomla!. He or she is not a specialist in security, either good security or bad security. He or she is merely a target to be taken down. While Joomla! itself is inherently safe but misconfigurations of the CMS, vulnerable components, hosts that are poorly configured, and weak passwords can all contribute to the downfall of your site.

You will need to ensure that your copy of Joomla! is original and not compromised. Once you install it, you will need to check a few key settings. And lastly, we'll establish the permission settings of various files and folders. The intent of this chapter is to get you prepared to have a good, solid setup before you go live. So let's take a detailed look at the following:

  • Common Terminology

  • Hosting—Selection and Unique Needs

  • Architecting for a successful Joomla! install

  • Downloading Joomla!

  • Important settings

  • Permissions

  • Common trip ups

  • Setting up metrics to measure security

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Joomla! Web Security
End of Section 1
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon