Support

Admin Tools

#10154 Security Exceptions List

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by nicholas on Wednesday, 14 December 2011 14:26 CST

Wednesday, 14 December 2011 13:45 CST

user50401
Mandatory information about my setup:

Have I read the related troubleshooter articles above before posting (which pages?)? yes
Have I searched the forum before posting?yes
Have I read the documentation before posting (which pages?)?na
Joomla! version: 1.7.3
PHP version: (unknown)
MySQL version: (unknown)
Host: (optional, but it helps us help you)
Admin Tools version: (latest


Description of my issue:
Is there a source somewhere which would list the various security exceptions? (or at least the most common) Some are known to me but I am currently getting (unkn to me) a lot of "MUA Shield" and I doubt it refers to the game...

thanx

Wednesday, 14 December 2011 13:46 CST

user50401
PS:
GREAT Extension....love it.......

Wednesday, 14 December 2011 14:26 CST

nicholas
First, thank you for your kind words!

Regarding the exceptions, the key is to take a look at the Configure WAF page and its documentation. For example, you'll see that there is a setting called "Malicious User Agent block (MUAShield)". See? MUAShield. Now, what does that mean? Let's take a look at the documentation page. Search for MUAShield and you find this:
Many hackers will try to access your site using a browser configured to send malicious PHP code in its user agent string (a small piece of text used to describe the browser to your server). The idea is that buggy log processing software will parse it and allow the hacker to gain control of your website. When enabled, this feature allows Admin Tools to detect such attacks and block the request.


That's it. The Reason column in the log, the titles in the Configure WAF page and the documentation match up to give you the complete picture.

You might wonder why these are not tooltips. I have explained that many times in the past. If they become tooltips, translators will have to translate them and it's a LOT of text. Moreover, I can not guarantee that all translators grasp the full extent of the explanation, therefore I can not guarantee that it will be a perfect translation or an approximate adaptation which might give you the wrong impression about what each feature does.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!