Support

Admin Tools

#30431 Critical file modified email

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by pfowler on Wednesday, 31 October 2018 10:08 CDT

Wednesday, 31 October 2018 09:13 CDT

pfowler
Occasionally I receive emails from my website saying a critical file has been modified but the email does not say what file has changed. How do I change it so Admin Tools lists the file name?

Hello,
We would like to notify you that one or more critical files that you decided to monitor have been modified on your site, <site name>. The list of files modified on your site is as follows:

If this message was not sent to you as the result of such a desirable and expected change please review your site immediately as this would be an indication of hacking activity.
Best regards,
The <site name> team

Wednesday, 31 October 2018 09:42 CDT

tampe125
Hello,

is the option Monitor Critical Files enabled?
Do you have any value in the field Monitor these files for changes? If so, which are its contents?

Davide Tampellini

Developer and Support Staff

🇮🇹Italian: native 🇬🇧English: good • 🕐 My time zone is Europe / Rome (UTC +1)
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Wednesday, 31 October 2018 09:45 CDT

pfowler
Yes monitor critical files is enabled for

index.php
administrator/index.php

Wednesday, 31 October 2018 09:53 CDT

tampe125
I'm sorry, those are two different options, the one you're saying doesn't accept any param. Can you please attach a screenshot, so we can eliminate any doubt?

Davide Tampellini

Developer and Support Staff

🇮🇹Italian: native 🇬🇧English: good • 🕐 My time zone is Europe / Rome (UTC +1)
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Wednesday, 31 October 2018 10:01 CDT

pfowler
So are you saying I use one option or the other but not both? Please see attached.

Wednesday, 31 October 2018 10:05 CDT

tampe125
Yes, reading the Monitor Critical Files tooltip it says:
Critical files commonly modified by hackers (index.php, administrator/index.php and the index.php, error.php and component.php of all templates installed on the site) will be monitored for changes on every page load
Basically you're monitoring the same files twice.
Can you please remove the index.php and administrator/index.php files from the list and try again? That should fix your issue.
Anyway that's an unintended behavior, so I'll take a look at it.

Davide Tampellini

Developer and Support Staff

🇮🇹Italian: native 🇬🇧English: good • 🕐 My time zone is Europe / Rome (UTC +1)
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Wednesday, 31 October 2018 10:08 CDT

pfowler
Ok thanks I'll try that.

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!