Talk:Joomla

Joomla 1.5.7 Security Release Now Available

Tuesday, 09 September 2008

• "Several security issues were fixed in this release. There was 1 critical, 1 major and 2 moderate security vulnerabilities fixed in 1.5.7. For more information, visit the Security Center."
• Full update instructions: http://docs.joomla.org/Upgrading_1.5_from_an_existing_1.5x_version
• Command-Line Instructions: http://docs.joomla.org/Using_a_terminal_session
• Upgrade Package (1.5.0 to 1.5.7): http://joomlacode.org/gf/download/frsrelease/8375/31012/Joomla_1.5.0_to_1.5.7-Stable-Patch_Package.tar.bz2

Notes:

• The upgrade instructions on the Joomla website are neither complete nor specific
• Upgrading a Joomla 1.5.0 installation done from Dietmar's contrib can be achieved using the commands shown below. WARNING: These commands assume you are running Joomla v1.5.0 as installed by smeserver-joomla-1.5.1-2.noarch.rpm as of 10/25/2008. You can find your Joomla version at http://<yourserver>/joomla/administrator:

cd /tmp
wget http://joomlacode.org/gf/download/frsrelease/8375/31012/Joomla_1.5.0_to_1.5.7-Stable-Patch_Package.tar.bz2
bunzip2 Joomla_1.5.0_to_1.5.7-Stable-Patch_Package.tar.bz2
cd /opt/joomla
tar xvf /tmp/Joomla_1.5.0_to_1.5.7-Stable-Patch_Package.tar
chown -R admin:www *
find . -type d -exec chmod 755 {} \;
find . -type f -exec chmod 644 {} \;

Mmccarn 16:51, 25 October 2008 (UTC)

htaccess

Hello Dietmar.

Please, see this post about htaccess configuration, to improve your rpm package. Good work.

http://forums.contribs.org/index.php?topic=38332.msg173456#msg173456

--Normando Hall 22:29, 30 August 2007 (MDT)

PERMISSION QUESTION

The permissions on the files are:

directories: 775
files: 664

It's possible that this may not be strong enough permissions as the Joomla FAQ (http://help.joomla.org/component/option,com_easyfaq/task,view/id,167/Itemid,268/)recommends that permissions be as follows:

directories: 755
files: 644

You can change to the recommended settings by changing to the root of the Joomla install:

cd /opt/joomla

Now change the permissions:

chown -R admin:www ./*
find . -type d -exec chmod 755 {} \;
find . -type f -exec chmod 644 {} \;
find cache/ images/ -type d -exec chmod 775 {} \;

Temporary elevate the permissions to install plugins or configure (change back after you install or configure):

find . -type d -exec chmod 775 {} \;
find . -type f -exec chmod 664 {} \;