After the recent security issues with TYPO3 I keep an especially close watch on my servers' mod_security logs. jumpurl atacks come from many IP addresses and they are already bore me. However today I saw something new and interesting...

Despite of many warnings some providers and companies are very slow on updating their TYPO3 web sites. There are reports about successfully hacked sites.

According to my logs hackers are hunting for web sites that still have vulnerable versions. If they find such sites, sites will be hacked. If you care about you business — upgrade your web site!

As you must be aware already, there is a critical security issue in the TYPO3 core. This is not a semi–possible XSS that requires blah-blah-blah, etc. This is a real threat. No such issues were discovered in TYPO3 before.

The issue allows an attacker to read files on your web server. If your web server is configured properly, the attacker will be able to read files from your web site root and below. It means that he can read typo3conf/localconf.php and get your database and Install tool password. You should understand what happens next (I am...

Normally I do not repeat news from other sites. But this time I will because it is important.

You have to update TYPO3 core on your web site. You just have to. No execuses if you don't.

If you do not know yet, logins on typo3.org are back online. However all passwords are changed and you must use the "Forgot password?" link. This works for many people but I had problems after I tried to change the password: I could not login after changing the password in my profile. I tried six times and it is reproducable for me. The password was 12 characters alphabetic (usually I use more complex password but here I just wanted to try). So for now I stay with generated password. It is shorter than I usually use but it is the...

Typically I do not repeat news from other web sites (including typo3.org) and I did not do it on Friday when security incident on typo3.org was announced. You all know about it already and there is no need to repeat all advisories.

Instead I would like to emphasize that everyone should stay calm now.

Yes, please, stay calm.

However, calm does not mean silent. There is a discussion about the incident in TYPO3 mailing lists. If you do not count some nervous people there, the discusssion is good and it already produced ideas, that can be used...

In this article I am going to discuss advanced guestbook spam blocking. "Advanced" means that techniques will require not TYPO3 configuration but compiling, configuring and installing additional server components. This article is intended to web server administrators who are not afraid to protect their customers by installing non-traditional software.

I have to put standard disclaimer here: this technique works well for me. However it may not work for you. It may block some of your customers (though I provide ways to unblock most of them). If...