|
Written by the whyjoomla? blog
|
|
Wednesday, 13 August 2008 |
|
Incase you didn't catch the heads-up on joomla.org yesterday - a new security patch for and full version of Joomla 1.5x has been released.
Apparently a bug in 1.5.5 was allowing unscrupulous fellows to change people's login passwords... which is quite a big deal in my book. Typically the error is reported to leave the main site admin account open to editing! You can read more on this issue in the Joomla Developer Blog (http://developer.joomla.org/security/news/241-20080801-core-password-remind-functionality.html) .
Security bugs are always a little scary but one thing to note with Joomla in general is that the loopholes always get closed very quickly - in fact, when you cruise through the Joomla forums (http://forum.joomla.org/) its hard to find many posts reporting sites being hacked due to security flaws in Joomla core.
I recommend upgrading your Joomla 1.5.x site immediately to 1.5.6 - there are simple patches available on joomlacode.org (http://joomlacode.org/gf/project/joomla/frs/) (scroll down to the 1.5.6 upgrades section) which you can download and just upload on top of your current install; a process which takes just a couple of minutes.
Read original post at source site... .
| Comments () >> |
 |
 |
![[image: Joomla Feed logo]](images/stories/mainsite/joomlafeed_head_600w.jpg)
