I have been trying to help a friend and I am in an area I have no experience. If you know anything about security issues in this software, please pm me so I can ask a question.
-
-
Good luck !! I need to learn Joomla.....but, haven't....yet. -
Not difficult software to use...this issue is just in an area I am not familiar with :-/Comment
-
The most important thing with any CMS is to keep it fully up to date and make sure any plugins/third party software are up to date as well.
Have you looked at this?Comment
-
Garby beat me to it before I could dig up the link. I keep it bookmarked at work, but not on my home laptop. His is good advice.Originally posted by garby View Post
As an administrator, if you're using an off-the-shelf solution, your only bet is(as Garby mentioned) keep everything up to date and have a reliable disaster recovery plan. If you do get "hacked", the only safe thing you can do is restore from recent backups taken prior to the exploit. It's easier to restore a site and db, than it is to go through the entire site and make sure everything is secure.Comment
-
Docs is best bet.
I don't use canned CMS systems like this, I hand role them so won't be much help here.Comment
-
Let me explain the problem. Their old site was secure for incoming payments. The new site that was built for them has a problem when a customer pays by cc, the COMPLETE information is mailed to them instead of just customer name and payment amount. Therefore, it could be there for any hacker.
I have helped him with some simple maintenance on the site that was not up to par, but this is an area I have never played with before in Joomla. I'm not sure this is an update issue as it only started upon release of the new site. (?)
The guy who built the site has gone MIA....so he is NO help. I think I need to tell him to hire someone (obviously different than who built the site)...I'm a bit lost on this one.Comment
Comment