Hi all,

We are glad to inform you that we have developed our own Joomla Security Extension. We decided to develop it because the available ones do not meet our needs.

Our PHP/Joomla/Security guru Val has developed it as a standard Joomla 1.5 plugin. Here is how it looks like:

http://img214.imageshack.us/img214/643/securityplugin.png (http://img214.imageshack.us/i/securityplugin.png/)

As you can see it has very advanced security / filtering options. It comes with a predefined rule set which works for most cases. Still, if you'd like to tweak it there are many options. The best part is it has a log and you can debug any unexpected behavior.

Our Joomla Security extension is currently available only to Siteground customers. If you are not one, check our special friends hosting promotion for only $9.95 for one year (http://www.siteground.com/friends.htm).

We will install it free of charge to all our clients as part of our intention to keep clients Joomla secure and safe. For this purpose simply post a ticket in the Billing category and refer to this thread.

Short Disclaimer: We have tested thoroughly the Joomla Security Extension. Still, it is in developing stage and problems are possible. This is especially true for extensions like this one which have to filter users input.

that was great!!!!! i like it!!!!!!!!!!!!

I'm a siteground user and installed this plugin. I do have a question, though, and that is what are risks with have the following 2 options disable?

Filter $_GET
Filter $_COOKIE

I realized after installing the plugin and testing the site that one of the components would not work completely unless those 2 options were turned off. I haven't seen any security alerts with the program, so I don't think there's an issue there, but just seeing if I can at least get an idea if I have something to worry about.

Thanks,

Yes, it is a huge risk to have the these variables not filtered. Especially $_GET is very dangerous because most exploits work with it.