Jump to content
  • Announcements

    • dennis

      Welcome to theZAh   06/09/2016

      Enjoy the site and let us know if you find anything not appropriate... silly spammers.
dennis

Akeeba Backup

Recommended Posts

Really excellent software for backing up and restoring your Joomla site

 

Some Notes, change the default kickstart.php to something else or you'll get the following error

 

Quote

 

Akeeba Kickstart Professional – Insecure setup detected

Akeeba Kickstart has detected that its file name is kickstart.php. Please change the file name to something which does not begin with kickstart and ends with .php. For example, you could rename the file to myexample.php Then you can access this file by replacing kickstart.php with the new name in the address bar of your browser.

Why do you need to do that?

Due to its nature, Akeeba Kickstart will execute commands sent to it by any web visitor. There is no way to verify the visitor's identity. Since Akeeba Kickstart Professional allows you to import ZIP archives from arbitrary URLs an attacker can use it to load malware to your site while you are restoring your site. Your only protection is to rename Kickstart's file to prevent the attacker from using Akeeba Kickstart Professional against you.

If you do not need the additional features of Akeeba Kickstart Professional you are strongly advised to use Akeeba Kickstart Core. Since it lacks the ability to import remote files it's safe to use without renaming the file.

 

 

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now


×