joomla Website backend

[SparkyMarky]

I am constantly having problems with my website hostings that use Joomla. Now I'm being kicked/re-directed to the front end when ever I try to update the website hostings.


Websites affected are Learnertech.com, xboxgamers.co.uk and dgmhr.co.uk

It seems there isn't a week that goes by without some kind of issue.

Could someone tell me what the problem is now ?

Mark

[steppen]

I believe the last few posts in this forum is discussing the same issue.

In short:

Quote:

Originally Posted by eukhost.com

Joomla wants 777 permission on many files and folders which makes it open for injections and attacks. We need to prevent hacking / cracking attempts on Joomla using mod_security but joomla gives problems with certain rules. It makes things really difficult to keep joomla installations secure if you dont have mod_security on the server.

If you want you can disable mod_security from your .htaccess file using following code :-

Code:

<IfModule mod_security.c>

    SecFilterEngine Off

    SecFilterScanPOST Off

</IfModule>

This code will disable mod_security for your account but make sure that we wont be responsible for any sorts of injections that may occur on your website hosting.

Per now eUKhost have reverted some mod_security rules which were making problems, but they haven't sorted this completely.

References:
has some one been bashing and hacking again?
Daily problems with Website
Images, scripts not working... whats going on?

[steppen]

A follow up question:

Are we now at a state where Joomla can be used with mod_security? If not, are eUKhost still investigating/sorting this issue, or will we not be able to use Joomla in a secure way?

Sorry, but I really got confused after rereading the posts mentioned above..

[eUKhost.com]

Quote:

Originally Posted by steppen

A follow up question:

Are we now at a state where Joomla can be used with mod_security? If not, are eUKhost still investigating/sorting this issue, or will we not be able to use Joomla in a secure way?

Sorry, but I really got confused after rereading the posts mentioned above..

Yep. We've managed to sort out problems with Joomla rules in mod_security. I have requested some other members as well to test and give us feedback.

[steppen]

My own Joomla-installation on www.gf2009.info doesn't appear to have any problems (but I haven't used/tested it over the last few days so I don't really know if there was ever a problem in the first place). All pages does look allright, and I can use the admin interface without being redirected/kicked out.

I'm on a VPS Hosting in case that matters, and I don't have any of the SecFilter-rules in my .htaccess file.