NYCPHP Meetup

NYPHP.org

[joomla] Server Scans

Scott Wolpow scott at wolpow.com
Mon Dec 13 15:41:09 EST 2010 

Thanks Chris. I was refereeing more to the actual server, than Joomla 
itself.
Scott Wolpow

On 12/13/2010 10:20 AM, Chris French wrote:
> Mitch is right,
>
> If you are interested in security you can help yourself 1000 fold if 
> you just read a little bit about security and the web with joomla 
> specifically your worst nightmare is bad file permissions, if your 
> setting anything to chmod 777, You are setting yourself for trouble.
>
> Second you need to update joomla as soon as a new patch comes out the 
> same goes for your components as well.
>
> You should also check this out
>
> http://sectools.org/web-scanners.html
>
> I haven't used most of them but they could help you.
>
> Chris
>
> On Dec 13, 2010, at 7:27 AM, Mitch Pirtle wrote:
>
>> On Fri, Dec 10, 2010 at 6:39 PM, Scott Wolpow <scott at wolpow.com 
>> <mailto:scott at wolpow.com>> wrote:
>>> Does any one know of a good service to scan a server for security 
>>> issues,
>>> besides Joomla centric?
>>
>> You're best off doing some scanning on your own, if only to be
>> slightly edumucated on such practices. There are great free tools out
>> there too:
>>
>> nmap - http://nmap.org/
>> nessus - http://www.nessus.org/nessus/intro.php
>>
>> I've had access to five- and six-figure security assessment platforms
>> and toolkits and can say emphatically that these two, combined with a
>> bit of reading on your part, are just as effective.
>>
>> -- Mitch, teaching how to fish :-)
>> _______________________________________________
>> New York PHP SIG: Joomla! Mailing List
>> http://lists.nyphp.org/mailman/listinfo/joomla
>>
>> NYPHPCon 2006 Presentations Online
>> http://www.nyphpcon.com
>>
>> Show Your Participation in New York PHP
>> http://www.nyphp.org/show_participation.php
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> New York PHP SIG: Joomla! Mailing List
> http://lists.nyphp.org/mailman/listinfo/joomla
>
> NYPHPCon 2006 Presentations Online
> http://www.nyphpcon.com
>
> Show Your Participation in New York PHP
> http://www.nyphp.org/show_participation.php

-- 
*Scott Wolpow*
*718.275.7765
Join me for Joomla Day Weekend
http://www.joomladaynyc.com*

More information about the Joomla mailing list