| জুমলা নিরাপত্তা |
|
|
Joomla has gained tremendous popularity even it is relatively new CMS software. In a recent poll Joomla has topped the list competing with other CMS. Drupal was the second winner. Today a search on Google with Joomla would return four millions English sites. Including other languages this number would be much higher. The Joomla forum has most of the basic information needed to secure a Joomla site.
This is no surprise given the ease of kicking off a site with Joomla in less then 20 minutes. Joomla installation and configuration is so easy that, anyone with a basic knowledge of some FTP can get a dynamic site running in an hour or so. Such a dynamic site can have a whole lot features, including users’ login, blog, poll, articles etc. Extra functionality can easily be added with a component or module which Joomla has a thousands of, both commercial and free. Joomla also maintains a directory of those components and modules. The outlook or feel of a site can also be changed with a wide variety of templates. There are a hundreds of commercially available and almost unlimited number of free templates. As with any popular software, Joomla has been targeted by crackers and hackers. A large number of Joomla sites get cracked each day. Sometimes well renowned sites also get cracked. Joomla developers have always been saying that Joomla is secure when the preconditions are properly met. Among the preconditions, there are server setup, PHP setup and version, type of hosting, file and directory permissions etc. Another point always stressed is that most cracks and hacks have been done exploiting the vulnerability of third party plug-ins which Joomla call component and modules. Some plug-ins are ill written codes and sometimes their developers abandoned the project. On Joomla’s part, the Joomla forum has a list of all known vulnerable component and modules so that webmasters know their risks.
Most hacks or cracks on Joomla sites are automated and exploit some hole on a site. Knowing the holes and sealing them is of paramount importance in securing a Joomla based site. A large number of hacks just wipes the configuration file and puts some leftover codes. Some hacks leave malicious PHP code spreading Trojan, phising etc. The latest version of Joomla is believed to be secure against all or most known attacks. Yet, proper server configuration, file and directory permissions and a number of other security measures have not got less importance. This is no surprise given the ease of kicking off a site with Joomla in less then 20 minutes. Joomla installation and configuration is so easy that, anyone with a basic knowledge of some FTP can get a dynamic site running in an hour or so. Such a dynamic site can have a whole lot features, including users’ login, blog, poll, articles etc. Extra functionality can easily be added with a component or module which Joomla has a thousands of, both commercial and free. Joomla also maintains a directory of those components and modules. The outlook or feel of a site can also be changed with a wide variety of templates. There are a hundreds of commercially available and almost unlimited number of free templates.
As with any popular software, Joomla has been targeted by crackers and hackers. A large number of Joomla sites get cracked each day. Sometimes well renowned sites also get cracked. Joomla developers have always been saying that Joomla is secure when the preconditions are properly met. Among the preconditions, there are server setup, PHP setup and version, type of hosting, file and directory permissions etc. Another point always stressed is that most cracks and hacks have been done exploiting the vulnerability of third party plug-ins which Joomla call component and modules. Some plug-ins are ill written codes and sometimes their developers abandoned the project. On Joomla’s part, the Joomla forum has a checklist of all known vulnerable component and modules so that webmasters know their risks. Most hacks or cracks on Joomla sites are automated and exploit some hole on a site. Knowing the holes and sealing them is of paramount importance in securing a Joomla based site. A large number of hacks just wipes the configuration file and puts some leftover codes. Some hacks leave malicious PHP code spreading Trojan, phising etc. The latest version of Joomla is believed to be secure against all or most known attacks. Yet, proper server configuration, file and directory permissions and a number of other security measures have not got less importance.
|
| পরে > |
|---|
