Joomla! Web Security

Book Image

Joomla! Web Security

Book Image

Joomla! Web Security

Overview of this book

Joomla! Web Security

Joomla! Web Security

Credits

About the Author

About the Author

About the Reviewer

About the Reviewer

Preface

Free Chapter

Let's Get Started

Let's Get Started

Common Terminology

Hosting—Selection and Unique Needs

Architecting for a Successful Site

Downloading Joomla!

Common Trip Ups

Setting Up Security Metrics

Test and Development

Test and Development

Welcome to the Laboratory!

Using the Ravenswood Joomla! Server

Tools

Tools, Tools, and More Tools

Vulnerabilities

Vulnerabilities

Importance of Patching is Paramount

What is a Vulnerability?

Anatomy of Attacks

Anatomy of Attacks

Remote File Includes

How the Bad Guys Do It

How the Bad Guys Do It

Laws on the Books

Acquiring Target

Sizing up the Target

Vulnerability Tools

Finding Targets to Attack

What Do I Do Then?

Countermeasures

php.ini and .htaccess

php.ini and .htaccess

Log Files

What are Log Files, Exactly?

Learning to Read the Log

Log File Analysis

Care and Feeding of Your Log Files

Tools to Review Your Log Files

SSL for Your Joomla! Site

SSL for Your Joomla! Site

What is SSL/TLS?

Process Steps for SSL

Performance Considerations

Other Resources

Incident Management

Incident Management

Creating an Incident Response Policy

Developing Procedures Based on Policy to Respond to Incidents

Security Handbook

Security Handbook

Security Handbook Reference

General Information

List of Critical Settings

General Apache Information

Customer Reviews

5 star

0

4 star

0

3 star

0

2 star

0

1 star

0

Summary

In this chapter, we covered the very important and highly ignored topic of reading and analyzing log files, and the tools to deal with them. You learned the need to rotate and collect your log files for offline analysis and that they are a great way to see a "trend" that may be a precursor to an attack. Just remember to monitor AND backup your logs frequently.