Menu Content

Shopping Cart

cart
Your Cart is currently empty.

Currencies Accepted


Examples

Newsletter

Subscribe to our newsletter


Move
Close

Name:

Email:

Like it? Share it!

Find Us Elsewhere



Follow us on Twitter

Home News Joomla Password Security

Joomla Password Security PDF Print E-mail
Wednesday, 23 December 2009 19:06

Recent discussions in the Joomla! security forum have made it clear that a particular weak point of the Joomla security system is the front-end password reset function. If your site includes any extension that is vulnerable to a relatively common security problem - sql injection - then an attacker can potentially abuse the password reset function to change your administrator password.

This is why we think it makes sense to be able to block the password reset function for administrative users, and it is why we have created our 'block password reset' system plugin. This is a non-commercial plugin (and will remain so), and is freely downloadable.

Unlike other approaches to this problem it does not require any hacks to the core Joomla! code. You just install it like any other plugin and select the users or groups for which you wish to block the password reset function through the plugin parameters. At the moment it is just designed to work with the Joomla! user component, but we plan to extend it to work with other registration systems as well, such as community builder, if there is a demand for it.

 
 

VirtueMart Featured Products Grid

Switch View


A module extension for the the Joomla 1.5 CMS. It displays a short excerpt from articles in a selected category or section, or from a specified list of articles, with link and optional thumbnail image.
Mod Featured Items Pro

£10.00
£9.00
You Save: £1.00



A featured items module that shows selected entries from the SOBI2 business index.
Featured Items SOBI

£12.00



A module extension for the the Joomla 1.5 CMS. It displays a short excerpt from articles in a selected category or section, or from a specified list of articles, with link and optional thumbnail image.
Mod Featured Items Carousel

£12.00
£11.00
You Save: £1.00



A module extension for the the Joomla 1.5 CMS. It plays a random list of mp3s using the Flash media player.
Mod Random MP3 Pro

£12.00



Shop

Joomla Components Joomla Modules Joomla Plugins Joomla Templates

List All Products

Advanced Search





Lost Password?
Forgot your username?
No account yet? Register
Download Area

Support Menu

Joomla Tips

Understanding CSS Selectors When Editing Joomla Templates

// When editing a Joomla! template one of the biggest challenges can be finding the css style rules that apply to a particular element. Read more..

Social Networking Extensions for Joomla

A system of user profiles that allows for the display of user information, activities and interaction is a common requirement for many websites and there is a variety of software available, of varying quality. The purpose of this article is to provide a guide to some of the options available. Read more..

Joomla Password Security

Recent discussions in the Joomla! security forum have made it clear that a particular weak point of the Joomla security system is the front-end password reset function. Read more..

Subscription Components for Joomla

I have recently been designing a site for a client which required a membership subscription component. By that I mean, I needed to be able to restrict access to parts of the site to paying subscribers only. Read more..

Understanding Types of Joomla Extensions

What is the difference between a Joomla Component, a Module and a Plugin? This issue can seem rather confusing to a novice Joomla user, but it is really worth understanding this, because each have their specific uses. Read more..


Blog Articles

Internet Explorer - Is It As Bad As All That?

Recent warnings by the French and German governments have highlighted concerns about the security of Internet Explorer, for example see http://news.bbc. Read more..

The Joomla Community

I am pleased to say that, through our related site Inspiration Web Design, we have just been listed in the Joomla Resources Directory. And I really am pleased. Read more..

Joomla and the GPL

There have been big changes in the Joomla extensions directory in recents months: since July this year the directory has only included extensions that are licensed under the General Public License (GPL), the same license that Joomla itself is licensed under. So commercial developers of Joomla extensions have been faced with a choice: either convert to the GPL, or try to go it alone without being listed in the directory. Read more..


Find Us on Facebook

Spiral Scripts on Facebook

 
 

fitness