Hi
Security is very low
I got hacked a few moments before
And in the Home
info@elgg.org
Security issues should be reported to security@elgg.org!
©2014 the Elgg Foundation
Elgg is a registered trademark of Thematic Networks.
Cover image by RaĆ¼l Utrera is used under Creative Commons license.
Icons by Flaticon and FontAwesome.
@ura soul Fixed already. No reason to remove install folder
regardless of the security coded into the install folder, there is no reason to keep the folder and the folder always represents one more attack vector.
@ura soul If you found something then commit about it on GitHub and explain about removing the core's 'install' folder
i just did explain all that is needed to be said.
Michele, good remarks. I think setting up iptables correctly. closing unused ports and constantly updating your open source code and your services is most important.
In case of larger projects which need access from multiple IP's, limiting access to a single IP and then creating VPN bridge to this IP is a good solution as well.
This should be also backed up by good backup and deploymnet policy, so that in case someone breaks into your system (or eg. human error deletes some data from your system, something that happens remarkably often), you can have your system back up and running in a moment.
- Previous
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- Next
You must log in to post replies.