JD11NL - Joomla! Security 101

•

1 gostou•742 visualizações

How secure is your Joomla! site? Are you employing the most basic security principles to protect it? Learn all about it in an easy to follow presentation suitable even for beginners.

Tecnologia

Joomla! Security 101
What to do before disaster strikes

http://akeeba.info/security-101
Πέμπτη, 31 Μαρτίου 2011

Hi, I’m
Nicholas
Dionysopoulos
and I bet you can’t
pronounce my last
name

http://akeeba.info/me
Πέμπτη, 31 Μαρτίου 2011

The basics
What we’re supposed to do and rarely do it

Πέμπτη, 31 Μαρτίου 2011

Frequent, tested backups
Would you jump off a plane without a parachute?

http://akeeba.info/backup
Πέμπτη, 31 Μαρτίου 2011

Update, yesterday
Yesterday’s code is tomorrow’s hack

http://akeeba.info/basic-security
Πέμπτη, 31 Μαρτίου 2011

Protect your backend
The login is not enough

Πέμπτη, 31 Μαρτίου 2011

777: The number of the beast
Permissions are doors; don’t leave them open

http://akeeba.info/777
Πέμπτη, 31 Μαρτίου 2011

Sensible permissions
Ask your host to enable suPHP or Apache’s mod_itk
Site root 0755 or 0700
Directories 0755
Files 0644
If you “must” use 0777 (don’t!) protect with .htaccess:
order deny, allow
deny from all

Πέμπτη, 31 Μαρτίου 2011

Don’t be a sitting duck
It’s duck season!

Πέμπτη, 31 Μαρτίου 2011

Mind your preﬁx
Nobody wants to be a jos_

http://akeeba.info/preﬁx
Πέμπτη, 31 Μαρτίου 2011

62 reasons to ﬁre your Super Administrator
or 42, depending on Joomla! version...

http://akeeba.info/62-reasons
Πέμπτη, 31 Μαρτίου 2011

Security Kung-Fu
You can’t kill a Ninja

http://akeeba.info/ninja
Πέμπτη, 31 Μαρτίου 2011

Visual ﬁngerprinting
Seeing is believing and then some

tm
pl=
of
fl
in
e

p =1
t

y
mplate= ja_purit
http://akeeba.info/ninja te
Πέμπτη, 31 Μαρτίου 2011

$Visual ﬁngerprinting RewriteCond %{QU ERY_STRING} (&|% 3F){1,1}tp= [OR] RewriteCond %{QU ERY_STRING} (&|% 3F){1,1} template= [OR] RewriteCond %{QU ERY_STRING} (&|% 3F){1,1}tmpl= [NC] RewriteRule ^(.* )$ - [R=404,L] http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011$

PHP has a big mouth
and that’s not water cooler gossip!

http://akeeba.info/ninja
Πέμπτη, 31 Μαρτίου 2011

PHP has a big mouth

http://akeeba.info/ninja
Πέμπτη, 31 Μαρτίου 2011

$PHP has a big mouth RewriteCond %{QU ERY_STRING} ^%3F =PHPE9568F36- D428-11d2-A769-0 0AA001ACF42 [OR] RewriteCond %{QU ERY_STRING} ^%3F =PHPE9568F34- D428-11d2-A769-0 0AA001ACF42 [OR] RewriteCond %{QU ERY_STRING} ^%3F =PHPE9568F35- D428-11d2-A769-0 0AA001ACF42 [OR] RewriteCond %{QU ERY_STRING} ^ %3F=PHPB8B5F2A0- 3C92-11d3-A3A9-4 C7B08C10000 RewriteRule ^(.* )$ - [R=404,L] http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011$

Blind Elephant
Meet your supervillain

http://akeeba.info/ninja
Πέμπτη, 31 Μαρτίου 2011

Blind Elephant

http://akeeba.info/ninja
Πέμπτη, 31 Μαρτίου 2011

Blind Elephant
nicholas@teapot:~/blindelephant$ ./BlindElephant.py mysite.com joomla
Loaded /home/nicholas/projects/3rdparty/blindelephant/trunk/src/build/lib.linux-x86_64-2.6/blindelephant/
dbs/joomla.pkl with 33 versions, 3696 differentiating paths, and 122 version groups.
Starting BlindElephant fingerprint for version of joomla at http://joomla.ubuntu.web

Hit http://joomla.ubuntu.web/media/system/js/validate.js
Possible versions based on result: 1.5.17, 1.5.18

Hit http://joomla.ubuntu.web/includes/js/joomla.javascript.js
Possible versions based on result: 1.5.17, 1.5.18

Hit http://joomla.ubuntu.web/media/system/js/caption.js
Possible versions based on result: 1.5.17, 1.5.18

Hit http://joomla.ubuntu.web/media/system/js/openid.js
Possible versions based on result: 1.5.17, 1.5.18

Hit http://joomla.ubuntu.web/templates/rhuk_milkyway/css/template.css
Possible versions based on result: 1.5.17, 1.5.18

Fingerprinting resulted in:
1.5.17
1.5.18

Best Guess: 1.5.18

http://akeeba.info/ninja
Πέμπτη, 31 Μαρτίου 2011

$Blind Elephant RewriteRule ^(im ages/stories/*. (jpe[g,2]?|jpg| png|gif|bmp|css| js|swf|htm[l]?)) $ $1 [L] RewriteCond %{RE QUEST_FILENAME} -f RewriteCond %{HT TP_REFERER} !^ht tp[s]{0,1}://(.+ .)?www.example .com [NC] RewriteRule .(j pe[g,2]?|jpg|png |gif|bmp |css|js|swf|htm[ l]?)$ - [R=404,L ] http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011$

More protection for you
e!
re Master 5 €
f The 1
Admin Tools
.htaccess Professional
http://akeeba.info/master-
http://akeeba.info/atpro
htaccess

use coupon code

JDNL11
Πέμπτη, 31 Μαρτίου 2011

That’s me...
and this is the perfect
time to ask me
questions!

Πέμπτη, 31 Μαρτίου 2011

That’s all folks!
Want the slides? http://akeeba.info/security-101

Πέμπτη, 31 Μαρτίου 2011

Mais conteúdo relacionado

Destaque

A Médiapiac Márkaépítés konferencián tartott előadásunk. Minden nagy felhajtásnak sajátja, az aránytalanság. Mint média a celebeket, úgy kapja fel a szél a divatos irányzatokat, majd ejti őket míg elérik azt a reális helyet, ahova igazán valók. Ez történt (igaz, meglehetősen látványosan) a dotcom hisztériával, ez zajlik a QR kód „mozgalommal”. A performance super-hype sem kivétel. Nincs ezzel persze semmi baj, így természetes. Vagy mégis?! Tudjuk-e méltósággal kezelni ezeket a túlburjánzásokat? A performance gondolkodásmód jó dolog, van helye a marketingben. De mi van azokkal a hagyományosan bevált mechanizmusokkal, amelyekről eddig azt gondoltuk, hogy vezérlik a fogyasztók vásárlási döntéseit. Tényleg nincs más dolgunk, mint hogy kiteszünk egy bannert, beletolunk egy kódot, aztán izgatottan figyeljük, hogy jön-e a folyamat végén a konverzió? Közben az olyan holisztikus elméletek, mint a márkaérték, az ismertség és a reklám visszaidézés ósdi kifejezésekként kerülnek a süllyesztőbe? Ezt a kísérletet teszem meg én is ezzel a prezentációval. Nem arról beszélnék, hogy kutatható-e vagy sem a márka szerepe a vásárlási döntéseknél. Ezzel évtizedek óta foglalkozik a szakma, őszintén, azt hittem ezen már túlléphetünk. Azt annál inkább vizsgálom, hogy vásárlói döntési folyamat szempontból milyen szerepet játszik a márkaérték, az ismertség, vagy a reklám visszaidézés a végső döntés meghozásában.

Performance Super-hype Márkaépítés Konferencia

Carnation Group

Social Media

Loretta Durham

AZIMUT Azimut 68S, 2007, 1.200.000 € For Sale Brochure. Presented By azimut-y...

Azimut Yacht Club

Encouraging engagement with the provision of emotional competency coaching fo...

Social Care Ireland

AZIMUT Azimut 46, 1997, 199.000 € For Sale Brochure. Presented By azimut-yach...

Azimut Yacht Club

The landscape of social media has changed dramatically in the last 5 years. For businesses, social media is not free—with most of the investment being in the time it takes to execute. Social media has increasingly become a platform for advertisers, as social networks evolve their business models, and many brands are finding their growth is at a standstill unless they utilize social advertising. Learn the power of social ads, what techniques you should use, and how you know they are working. Participants in this class should have an intermediate understanding of social media, already be using social for business, and be looking to take their strategy to an advanced level. Please bring your laptop. Gwen Woltz is co-founder of Wahine Media, a local social media agency that specializes in strategically building thriving and engaged online communities for businesses (wahinemedia.com). Gwen is a graduate of the University of Hawaii at Manoa, the past president of Social Media Club Hawaii (smchawaii.org), a finalist for Pacific Edge Magazine's Young Professional of the Year, one of Hawaii's Top 15 Social Media Influencers in 2012, and has over 7 years of digital media and marketing experience.

Social Media Advertising: Pacific New Media, June 2016

Wahine Media

What have you learnt about technologies from the process of constructing this...

Rachel Fradgley

Sugar creation preso corrected final.ver1

Salman Surgit

SPIC MACAY: Raison d’etre

Dhanada Mishra

Lab 4 handout 043012

Tim Arroyo

Slideshare stuff

stephen2

Webinar featuring the perspectives of four college students active in the fight for affordable textbooks. 5 April 2011 Open Access Textbooks Webinar Series To view an archived version of this webinar, visit http://r20.rs6.net/tn.jsp?llr=dtr4fkcab&et=1105071687102&s=2007&e=0016yrgHZL6tR46jManybsOesZ2p0yf3AdtJcmvQfGR2ub9U1MtWHuMyenROcNzE93YPOMQnzYX6zbgNiItcfDa_bOHKm5WZe_4TYx1oiD85q7a1c-dKV0bMSoJg0lKjlWh3aCLWoP7IofdYfefNiLLsV_BoTzXi8_bB9GR542jQzHzD8BYO3qsFQjqr9Sdo4KiVSSMRH-WUV_AfrPqmD6_VfaQ0TEdB2Pptk-OVAkFuLA=

2011-04-05 Open Textbooks: The College Student Speaks Out (Webinar)

Nicole Allen

Chad daley 1

chad101290

документ камерa Qwizdom

Игорь Анатольевич

Simt advertisementdistance learning correspondence course bachelor of commerc...

Shyam Institute of Management & Technology

Destaque (15)

Performance Super-hype Márkaépítés Konferencia

Social Media

AZIMUT Azimut 68S, 2007, 1.200.000 € For Sale Brochure. Presented By azimut-y...

Encouraging engagement with the provision of emotional competency coaching fo...

AZIMUT Azimut 46, 1997, 199.000 € For Sale Brochure. Presented By azimut-yach...

Social Media Advertising: Pacific New Media, June 2016

What have you learnt about technologies from the process of constructing this...

Sugar creation preso corrected final.ver1

SPIC MACAY: Raison d’etre

Lab 4 handout 043012

Slideshare stuff

2011-04-05 Open Textbooks: The College Student Speaks Out (Webinar)

Chad daley 1

документ камерa Qwizdom

Simt advertisementdistance learning correspondence course bachelor of commerc...

Último

Finology Group – Insurtech Innovation Award 2024

The Digital Insurer

[2024]Digital Global Overview Report 2024 Meltwater.pdf

hans926745

🐬 The future of MySQL is Postgres 🐘

RTylerCroy

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Product Anonymous

Tech Trends Report 2024 Future Today Institute.pdf

hans926745

Sara Mae O’Brien Scott and Tatiana Baquero Cakici, Senior Consultants at Enterprise Knowledge (EK), presented “AI Fast Track to Search-Focused AI Solutions” at the Information Architecture Conference (IAC24) that took place on April 11, 2024 in Seattle, WA. In their presentation, O’Brien-Scott and Cakici focused on what Enterprise AI is, why it is important, and what it takes to empower organizations to get started on a search-based AI journey and stay on track. The presentation explored the complexities of enterprise search challenges and how IA principles can be leveraged to provide AI solutions through the use of a semantic layer. O’Brien-Scott and Cakici showcased a case study where a taxonomy, an ontology, and a knowledge graph were used to structure content at a healthcare workforce solutions organization, providing personalized content recommendations and increasing content findability. In this session, participants gained insights about the following: Most common types of AI categories and use cases; Recommended steps to design and implement taxonomies and ontologies, ensuring they evolve effectively and support the organization’s search objectives; Taxonomy and ontology design considerations and best practices; Real-world AI applications that illustrated the value of taxonomies, ontologies, and knowledge graphs; and Tools, roles, and skills to design and implement AI-powered search solutions.

IAC 2024 - IA Fast Track to Search Focused AI Solutions

Enterprise Knowledge

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

Discord is a free app offering voice, video, and text chat functionalities, primarily catering to the gaming community. It serves as a hub for users to create and join servers tailored to their interests. Discord’s ecosystem comprises servers, each functioning as a distinct online community with its own channels dedicated to specific topics or activities. Users can engage in text-based discussions, voice calls, or video chats within these channels. Understanding Discord Servers Discord servers are virtual spaces where users congregate to interact, share content, and build communities. Servers may revolve around gaming, hobbies, interests, or fandoms, providing a platform for like-minded individuals to connect. Communication Features Discord offers a range of communication tools, including text channels for messaging, voice channels for real-time audio conversations, and video channels for face-to-face interactions. These features facilitate seamless communication and collaboration. What Does NSFW Mean? The acronym NSFW stands for “Not Safe For Work,” indicating content that may be inappropriate for professional or public settings. NSFW Content NSFW content encompasses material that is sexually explicit, violent, or otherwise graphic in nature. It often includes nudity, profanity, or depictions of sensitive topics.

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

UK Journal

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Neo4j

Enterprise Knowledge’s Urmi Majumder, Principal Data Architecture Consultant, and Fernando Aguilar Islas, Senior Data Science Consultant, presented "Driving Behavioral Change for Information Management through Data-Driven Green Strategy" on March 27, 2024 at Enterprise Data World (EDW) in Orlando, Florida. In this presentation, Urmi and Fernando discussed a case study describing how the information management division in a large supply chain organization drove user behavior change through awareness of the carbon footprint of their duplicated and near-duplicated content, identified via advanced data analytics. Check out their presentation to gain valuable perspectives on utilizing data-driven strategies to influence positive behavioral shifts and support sustainability initiatives within your organization. In this session, participants gained answers to the following questions: - What is a Green Information Management (IM) Strategy, and why should you have one? - How can Artificial Intelligence (AI) and Machine Learning (ML) support your Green IM Strategy through content deduplication? - How can an organization use insights into their data to influence employee behavior for IM? - How can you reap additional benefits from content reduction that go beyond Green IM?

Driving Behavioral Change for Information Management through Data-Driven Gree...

Enterprise Knowledge

BooK Now Call us at +918448380779 to hire a gorgeous and seductive call girl for sex. Take a Delhi Escort Service. The help of our escort agency is mostly meant for men who want sexual Indian Escorts In Delhi NCR. It should be noted that any impersonator will get 100 attention from our Young Girls Escorts in Delhi. They will assume the position of reliable allies. VIP Call Girl With Original Photos Book Tonight +918448380779 Our Cheap Price 1 Hour not available 2 Hours 5000 Full Night 8000 TAG: Call Girls in Delhi, Noida, Gurgaon, Ghaziabad, Connaught Place, Greater Kailash Delhi, Lajpat Nagar Delhi, Mayur Vihar Delhi, Chanakyapuri Delhi, New Friends Colony Delhi, Majnu Ka Tilla, Karol Bagh, Malviya Nagar, Saket, Khan Market, Noida Sector 18, Noida Sector 76, Noida Sector 51, Gurgaon Mg Road, Iffco Chowk Gurgaon, Rajiv Chowk Gurgaon All Delhi Ncr Free Home Deliver

08448380779 Call Girls In Friends Colony Women Seeking Men

Delhi Call girls

Handwritten Text Recognition for manuscripts and early printed texts

Maria Levchenko

The presentation explores the development and application of artificial intelligence (AI) from its inception to its current status in the modern world. The term "artificial intelligence" was first coined by John McCarthy in 1956 to describe efforts to develop computer programs capable of performing tasks that typically require human intelligence. This concept was first introduced at a conference held at Dartmouth College, where programs demonstrated capabilities such as playing chess, proving theorems, and interpreting texts. In the early stages, Alan Turing contributed to the field by defining intelligence as the ability of a being to respond to certain questions intelligently, proposing what is now known as the Turing Test to evaluate the presence of intelligent behavior in machines. As the decades progressed, AI evolved significantly. The 1980s focused on machine learning, teaching computers to learn from data, leading to the development of models that could improve their performance based on their experiences. The 1990s and 2000s saw further advances in algorithms and computational power, which allowed for more sophisticated data analysis techniques, including data mining. By the 2010s, the proliferation of big data and the refinement of deep learning techniques enabled AI to become mainstream. Notable milestones included the success of Google's AlphaGo and advancements in autonomous vehicles by companies like Tesla and Waymo. A major theme of the presentation is the application of generative AI, which has been used for tasks such as natural language text generation, translation, and question answering. Generative AI uses large datasets to train models that can then produce new, coherent pieces of text or other media. The presentation also discusses the ethical implications and the need for regulation in AI, highlighting issues such as privacy, bias, and the potential for misuse. These concerns have prompted calls for comprehensive regulations to ensure the safe and equitable use of AI technologies. Artificial intelligence has also played a significant role in healthcare, particularly highlighted during the COVID-19 pandemic, where it was used in drug discovery, vaccine development, and analyzing the spread of the virus. The capabilities of AI in healthcare are vast, ranging from medical diagnostics to personalized medicine, demonstrating the technology's potential to revolutionize fields beyond just technical or consumer applications. In conclusion, AI continues to be a rapidly evolving field with significant implications for various aspects of society. The development from theoretical concepts to real-world applications illustrates both the potential benefits and the challenges that come with integrating advanced technologies into everyday life. The ongoing discussion about AI ethics and regulation underscores the importance of managing these technologies responsibly to maximize their their benefits while minimizing potential harms.

Artificial Intelligence: Facts and Myths

Joaquim Jorge

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

How to convert PDF to text with Nanonets

naman860154

08448380779 Call Girls In Greater Kailash - I Women Seeking Men

Delhi Call girls

With more memory available, system performance of three Dell devices increased, which can translate to a better user experience Conclusion When your system has plenty of RAM to meet your needs, you can efficiently access the applications and data you need to finish projects and to-do lists without sacrificing time and focus. Our test results show that with more memory available, three Dell PCs delivered better performance and took less time to complete the Procyon Office Productivity benchmark. These advantages translate to users being able to complete workflows more quickly and multitask more easily. Whether you need the mobility of the Latitude 5440, the creative capabilities of the Precision 3470, or the high performance of the OptiPlex Tower Plus 7010, configuring your system with more RAM can help keep processes running smoothly, enabling you to do more without compromising performance.

Boost PC performance: How more available memory can improve productivity

Principled Technologies

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

Presentation on how to chat with PDF using ChatGPT code interpreter

naman860154

In this session, we will delve into strategic approaches for optimizing knowledge management within Microsoft 365, amidst the evolving landscape of Copilot. From leveraging automatic metadata classification and permission governance with SharePoint Premium, to unlocking Viva Engage for the cultivation of knowledge and communities, you will gain actionable insights to bolster your organization's knowledge-sharing initiatives. In this session, we will also explore how to facilitate solutions to enable your employees to find answers and expertise within Microsoft 365. You will leave equipped with practical techniques and a deeper understanding of how there is more to effective knowledge management than just enabling Copilot, but building actual solutions to prepare the knowledge that Copilot and your employees can use.

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

Drew Madelung

JD11NL - Joomla! Security 101

1. Joomla! Security 101 What to do before disaster strikes http://akeeba.info/security-101 Πέμπτη, 31 Μαρτίου 2011

2. Hi, I’m Nicholas Dionysopoulos and I bet you can’t pronounce my last name http://akeeba.info/me Πέμπτη, 31 Μαρτίου 2011

3. The basics What we’re supposed to do and rarely do it Πέμπτη, 31 Μαρτίου 2011

4. Frequent, tested backups Would you jump off a plane without a parachute? http://akeeba.info/backup Πέμπτη, 31 Μαρτίου 2011

5. Update, yesterday Yesterday’s code is tomorrow’s hack http://akeeba.info/basic-security Πέμπτη, 31 Μαρτίου 2011

6. Protect your backend The login is not enough Πέμπτη, 31 Μαρτίου 2011

7. 777: The number of the beast Permissions are doors; don’t leave them open http://akeeba.info/777 Πέμπτη, 31 Μαρτίου 2011

8. Sensible permissions Ask your host to enable suPHP or Apache’s mod_itk Site root 0755 or 0700 Directories 0755 Files 0644 If you “must” use 0777 (don’t!) protect with .htaccess: order deny, allow deny from all Πέμπτη, 31 Μαρτίου 2011

9. Don’t be a sitting duck It’s duck season! Πέμπτη, 31 Μαρτίου 2011

10. Mind your preﬁx Nobody wants to be a jos_ http://akeeba.info/preﬁx Πέμπτη, 31 Μαρτίου 2011

11. 62 reasons to ﬁre your Super Administrator or 42, depending on Joomla! version... http://akeeba.info/62-reasons Πέμπτη, 31 Μαρτίου 2011

12. Security Kung-Fu You can’t kill a Ninja http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011

13. Visual ﬁngerprinting Seeing is believing and then some tm pl= of fl in e p =1 t y mplate= ja_purit http://akeeba.info/ninja te Πέμπτη, 31 Μαρτίου 2011

14. Visual ﬁngerprinting RewriteCond %{QU ERY_STRING} (&|% 3F){1,1}tp= [OR] RewriteCond %{QU ERY_STRING} (&|% 3F){1,1} template= [OR] RewriteCond %{QU ERY_STRING} (&|% 3F){1,1}tmpl= [NC] RewriteRule ^(.* )$ - [R=404,L] http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011

15. PHP has a big mouth and that’s not water cooler gossip! http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011

16. PHP has a big mouth http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011

17. PHP has a big mouth http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011

18. PHP has a big mouth RewriteCond %{QU ERY_STRING} ^%3F =PHPE9568F36- D428-11d2-A769-0 0AA001ACF42 [OR] RewriteCond %{QU ERY_STRING} ^%3F =PHPE9568F34- D428-11d2-A769-0 0AA001ACF42 [OR] RewriteCond %{QU ERY_STRING} ^%3F =PHPE9568F35- D428-11d2-A769-0 0AA001ACF42 [OR] RewriteCond %{QU ERY_STRING} ^ %3F=PHPB8B5F2A0- 3C92-11d3-A3A9-4 C7B08C10000 RewriteRule ^(.* )$ - [R=404,L] http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011

19. Blind Elephant Meet your supervillain http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011

20. Blind Elephant http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011

21. Blind Elephant nicholas@teapot:~/blindelephant$ ./BlindElephant.py mysite.com joomla Loaded /home/nicholas/projects/3rdparty/blindelephant/trunk/src/build/lib.linux-x86_64-2.6/blindelephant/ dbs/joomla.pkl with 33 versions, 3696 differentiating paths, and 122 version groups. Starting BlindElephant fingerprint for version of joomla at http://joomla.ubuntu.web Hit http://joomla.ubuntu.web/media/system/js/validate.js Possible versions based on result: 1.5.17, 1.5.18 Hit http://joomla.ubuntu.web/includes/js/joomla.javascript.js Possible versions based on result: 1.5.17, 1.5.18 Hit http://joomla.ubuntu.web/media/system/js/caption.js Possible versions based on result: 1.5.17, 1.5.18 Hit http://joomla.ubuntu.web/media/system/js/openid.js Possible versions based on result: 1.5.17, 1.5.18 Hit http://joomla.ubuntu.web/templates/rhuk_milkyway/css/template.css Possible versions based on result: 1.5.17, 1.5.18 Fingerprinting resulted in: 1.5.17 1.5.18 Best Guess: 1.5.18 http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011

22. Blind Elephant RewriteRule ^(im ages/stories/*. (jpe[g,2]?|jpg| png|gif|bmp|css| js|swf|htm[l]?)) $ $1 [L] RewriteCond %{RE QUEST_FILENAME} -f RewriteCond %{HT TP_REFERER} !^ht tp[s]{0,1}://(.+ .)?www.example .com [NC] RewriteRule .(j pe[g,2]?|jpg|png |gif|bmp |css|js|swf|htm[ l]?)$ - [R=404,L ] http://akeeba.info/ninja Πέμπτη, 31 Μαρτίου 2011

23. More protection for you e! re Master 5 € f The 1 Admin Tools .htaccess Professional http://akeeba.info/master- http://akeeba.info/atpro htaccess use coupon code JDNL11 Πέμπτη, 31 Μαρτίου 2011

24. That’s me... and this is the perfect time to ask me questions! Πέμπτη, 31 Μαρτίου 2011

25. That’s all folks! Want the slides? http://akeeba.info/security-101 Πέμπτη, 31 Μαρτίου 2011

JD11NL - Joomla! Security 101

Recomendados

Recomendados

Mais conteúdo relacionado

Destaque

Destaque (15)

Último

Último (20)

JD11NL - Joomla! Security 101