Support

Admin Tools

#40724 Filescanner - how to start

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by jjst135 on Friday, 17 May 2024 06:16 CDT

Friday, 17 May 2024 04:17 CDT

jjst135

Hi! We are looking at Panopticon to do our sites management. It's looking very promising. Great.

In Panopticon the PHP file scanner from Admin Tools is used. We have not been using this feature because we use a external tool for this. But when we use Panopticon I need to understand the way the PHP file scanner works. And I get the basic principal.

I have stared scanning one of our sites. But we get a lot of suspicious files. I am pretty sure non of those fields are actually 'bad'. The just use code that looks suspicious. But to be able to use the filescanner effectively we don;t want to inspect 300 files. So we need to set some 'baseline'. And then only inspect changes / new suspicious files.

So would this be the best way to get started? -> Scan all files. Mark all of the as safe and then start actually inspecting files at the next scan?

 

Edited by jjst135 on 2024-05-17 04:26 CDT

Friday, 17 May 2024 06:14 CDT

nicholas

I recommend reading https://www.akeeba.com/documentation/admin-tools-joomla/php-file-scanner.html#php-file-scanner-mo and https://www.akeeba.com/documentation/admin-tools-joomla/php-file-scanner-reports.html.

Yes, when you have a use case like yours you should treat the first scan as a "known good" state and mark the suspicious files safe. Then, follow the instructions about the threat score in the second link I gave you.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Friday, 17 May 2024 06:16 CDT

jjst135

Thanks Nicholas!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!