Sandbox

Joomla! Community, help and support.
https://sandbox-forum.joomla.org/

approval and removal of extensions

https://sandbox-forum.joomla.org/viewtopic.php?t=78446

Page 1 of 1

approval and removal of extensions

Posted: Wed Jul 19, 2006 10:26 pm
by brokengecko
Since there have recently been many hacks of joomla websites through 3rd party components, does anyone analyze the components before they are listed on the extensions site?

And when an extension is found to be vulnerable, does anyone remove it from the downloads until there is a fix?

Re: approval and removal of extensions

Posted: Thu Jul 20, 2006 2:48 pm
by gsbe
The Editorial Team cannot test each extension. We rely on users to post reviews or report issues with the extensions which we review. If an extension is clearly a security risk we generally unpublish the listing and contact the developers.


brokengecko wrote:Since there have recently been many hacks of joomla websites through 3rd party components, does anyone analyze the components before they are listed on the extensions site?

And when an extension is found to be vulnerable, does anyone remove it from the downloads until there is a fix?

Re: approval and removal of extensions

Posted: Sun Jul 23, 2006 6:14 am
by igeoffi
^^
Maybe we should have some sort of extension test team to test for functionality and check to make sure that its not full of security holes.

Re: approval and removal of extensions

Posted: Sun Jul 23, 2006 6:22 am
by brad
igeoffi wrote:^^
Maybe we should have some sort of extension test team to test for functionality and check to make sure that its not full of security holes.


Wonderful idea, however we are stretched for resources as usual. Would you like to join one of the working groups to assist?

Re: approval and removal of extensions

Posted: Sun Jul 23, 2006 8:54 pm
by gsbe
igeoffi wrote:^^
Maybe we should have some sort of extension test team to test for functionality and check to make sure that its not full of security holes.


That is essentially what is happening. We have the entire Joomla userbase as a test group helping us watch all of the published extensions. Feel free to use the "Report Extension" feature to alert the editorial team of any issues.

Re: approval and removal of extensions

Posted: Mon Jul 24, 2006 12:23 am
by igeoffi
brad wrote:
igeoffi wrote:^^
Maybe we should have some sort of extension test team to test for functionality and check to make sure that its not full of security holes.


Wonderful idea, however we are stretched for resources as usual. Would you like to join one of the working groups to assist?

I wouldn't mind helping out.  :)

Re: approval and removal of extensions

Posted: Mon Jul 24, 2006 9:42 pm
by brad
igeoffi, I have sent you PM and email.... ;)

Re: approval and removal of extensions

Posted: Wed Jul 26, 2006 4:40 pm
by maxfiles
I like that idea.

I have writen two extensions, and would like to know if my programming skills need more work, I wrote the homeland security mod, and another google pagerank mod, both under this username in extensions area.

I would be happy to see if I am good at my programming skills.

Max
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/