[RESOLVED] Y'all aware that the Demo Administrator button 'hacked'
[RESOLVED] Y'all aware that the Demo Administrator button 'hacked'
Takes you to some inkjet refill site or somesuch. Not very useful.
Last edited by stingrey on Sun May 14, 2006 3:50 pm, edited 1 time in total.
-
nathandiehl
- Joomla! Intern
- Posts: 70
- Joined: Fri Aug 19, 2005 3:03 pm
- Location: Indiana, USA
- Contact:
Re: Y'all aware that the Demo Administrator button 'hacked'
thanks. this happens all the time. that's what happens when you give someone backend admin control...
(in the meantime, it looks like someone fixed it)
i'm moving this thread to official site feedback.
thanks again for the heads-up.
nathan.
(in the meantime, it looks like someone fixed it)
i'm moving this thread to official site feedback.
thanks again for the heads-up.
nathan.
If you're new to Joomla, Please read Anna's Joomla! Tips: viewtopic.php?t=5503
http://nathandiehl.com | Find out what makes me tick
http://nathandiehl.com | Find out what makes me tick
Re: Y'all aware that the Demo Administrator button 'hacked'
Yes, i actually fixed it myself, i was suprised to find that I could figure it out - sorry for posting on a subject that must happen all the time, as you say. I should have known that. :-)
-
brad
- Joomla! Hero
- Posts: 2212
- Joined: Fri Aug 12, 2005 12:38 am
- Skype: tested
- Location: Sydney - Australia
- Contact:
Re: Y'all aware that the Demo Administrator button 'hacked'
FYI The demo site refreshes every 60 mins as well. 
Brad Baker - Joomla! Core Team, Sites & Infrastructure.
http://www.rochen.com - Managed Dedicated, Reseller & Multiple Domain Hosting.
http://www.joomlatutorials.com <-- Joomla! 1.5 & 1.0.x
^New Joomla 1.5 Tutorials are out!
http://www.rochen.com - Managed Dedicated, Reseller & Multiple Domain Hosting.
http://www.joomlatutorials.com <-- Joomla! 1.5 & 1.0.x
^New Joomla 1.5 Tutorials are out!
Re: [RESOLVED] Y'all aware that the Demo Administrator button 'hacked'
I've been searching through the forums for a way to set up a secure Admin Demo. Almost every single post points out the site refreshes every 60 minutes and leaves it at that.
That really strikes me as a very insecure way of doing things. Can you elaborate more on how the demo site is set up and what measures have been taken to secure it. I think a lot of people would appreciate this info, myself included.
Thank you.
Atomm
That really strikes me as a very insecure way of doing things. Can you elaborate more on how the demo site is set up and what measures have been taken to secure it. I think a lot of people would appreciate this info, myself included.
Thank you.
Atomm
-
stingrey
- Joomla! Engineer
- Posts: 360
- Joined: Mon Aug 15, 2005 4:36 pm
- Location: Marikina, Metro Manila, Philippines
- Contact:
Re: [RESOLVED] Y'all aware that the Demo Administrator button 'hacked'
Atomm wrote:I've been searching through the forums for a way to set up a secure Admin Demo. Almost every single post points out the site refreshes every 60 minutes and leaves it at that.
This refers to the fact that the Database of demo.joomla.org is emptied and repopulated with sample data from a set script
Atomm wrote:That really strikes me as a very insecure way of doing things.
Why would it be insecure the user cannot access the filesystem, database or server directly and they cannot make any modifications to files via the backend
Atomm wrote:Can you elaborate more on how the demo site is set up and what measures have been taken to secure it. I think a lot of people would appreciate this info, myself included.
http://forum.joomla.org/index.php/topic,67974.0.html
Joomla! Core Team Member
Software Coding and Design - Stability Team Leader
God grant me the Serenity to Accept the things I cannot change, the Courage to change the things I can and the Wisdom to know the Difference.
Software Coding and Design - Stability Team Leader
God grant me the Serenity to Accept the things I cannot change, the Courage to change the things I can and the Wisdom to know the Difference.
