In the many years I have been in the software business I have met all kinds of people. Most of them are gracious and polite, a true joy of working with them. But then there is a minority of people who are being unreasonable. Even worse, there is this stark minority which is unreasonable, rude and believes they are above the law. One such case is that of Tomasz Smykowski, a Polish national who has launched a smear campaign against me and my company. Since he is still publishing lies about me, and deleting my comments on his blog, I feel obliged to answer in public, from my own blog.
Joomla! 3.2 includes an abundance of new features appealing to end users and developers alike. One of these new features is two factor authentication. In this tutorial you will learn what two factor authentication is and how you can use it in your components to enhance the security of potentially dangerous or important operations, just like most banks do.
As I've said many times, I am an avid user of Zend Server for local development on my Mac. It has pretty much everything you need, including a simple to use back-end for viewing issues occuring on your server which make debugging easier. Well, on the debugging front it has a major shortcoming: it comes with Zend Debugger which only works with the very expensive Zend Studio IDE. All other IDEs (Eclipse, NetBeans, phpStorm, ...) only provide support for XDebug. Every time I update Zend Server I have to install and enable XDebug instead of Zend Debugger. It's easy and will help you debugging your PHP applications easily on your local environment. This article describes how to do it.
As a Joomla! developer I often find myself providing support to users of my software. Sometimes, despite my best intentions, I hit a stone wall: a server setting is amiss. In this case I explain to my users what the problem is and ask them to contact their host to rectify it. One of the most irritating situations I've found myself dealing with is when a host replies "we can't do this for security reasons". I would generally accept that, if only the host actually knew what they're talking about. And, yes, I am specifically talking about the fopen URL wrappers and the fact that they are stupidly disabled on many hosts.
There is a very common misconception that moving configuration.php outside of your Joomla! root somehow makes your site more secure. It’s so common that you can even find instructions on the Joomla! documentation wiki. Let’s separate the myth from the facts and let’s see why this “security” advice may not be as secure as one might think.
Page 1 of 10