Support

Admin Tools

#10093 Help masking directories

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by nicholas on Thursday, 10 November 2011 01:47 CST

user44922
Mandatory information about my setup:

Have I read the related troubleshooter articles above before posting (which pages?)? Yes
Have I searched the forum before posting? Yes
Have I read the documentation before posting (which pages?)? Yes
Joomla! version: (1.5.24)
PHP version: (unknown)
MySQL version: (unknown)
Host: (hostgator, but it helps us help you)
Admin Tools version: (newest)


Description of my issue:

Hey guys, when I scan my site with HackerTarget.com and run Blind Elephant fingerprint I get these results (how do I hide these areas)? Whenever I choose to protect my front in with the htaccess configuration it breaks my template's css (yootheme_pure):



Hit /language/en-GB/en-GB.ini
Possible versions based on result: 1.5.18

Hit /language/en-GB/en-GB.com_content.ini
Possible versions based on result: 1.5.17, 1.5.18

Hit /htaccess.txt
File produced no match. Error: Error code: 403 (Forbidden)

Hit /language/en-GB/en-GB.com_contact.ini
Possible versions based on result: 1.5.17, 1.5.18

Hit /media/system/js/validate.js
Possible versions based on result: 1.5.17, 1.5.18

Hit /templates/rhuk_milkyway/css/template.css
Possible versions based on result: 1.5.17, 1.5.18

Hit /language/en-GB/en-GB.com_weblinks.ini
Possible versions based on result: 1.5.17, 1.5.18

Hit /configuration.php-dist
File produced no match. Error: Error code: 403 (Forbidden)

Hit /language/en-GB/en-GB.com_users.ini
File produced no match. Error: Error code: 404 (Not Found)

Hit /media/system/js/caption.js
Possible versions based on result: 1.5.17, 1.5.18

Hit /language/en-GB/en-GB.mod_search.ini
Possible versions based on result: 1.5.17, 1.5.18

Hit /language/xx-XX/xx-XX.ini
File produced no match. Error: Error code: 404 (Not Found)

Hit /language/xx-XX/xx-XX.com_users.ini
File produced no match. Error: Error code: 404 (Not Found)

Hit /language/xx-XX/xx-XX.com_content.ini
File produced no match. Error: Error code: 404 (Not Found)

Hit /language/en-GB/en-GB.mod_breadcrumbs.ini
Possible versions based on result: 1.5.17, 1.5.18

nicholas
Akeeba Staff
Manager
Are you sure you're running Admin Tools 2.1.11? The .htaccess generated by 2.1.11 does not allow access to the "language" directory. Just try accessing http://www.akeebabackup.com/language/en-GB/en-GB.ini and you'll see what I mean. If you are running 2.1.11, make sure that the Front-End Protection feature of the .htaccess Maker is turned on, then click on Save and Create .htaccess. Normally, all of the above hits should return a 403 or a 404 status, making fingerprinting impossible.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

nicholas
Akeeba Staff
Manager
Darn, caffeine not kicked in yet >:( I re-read your post and saw I was missing something. You disabled front-end protection because you had a problem with your template. OK, you did the wrong thing :) Please turn it back on. Sure thing, your template breaks. But! We have step-by-step instructions to work around it. Here they are: https://www.akeebabackup.com/documentation/troubleshooter/athtaccessexceptions.html

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!