3 Comments

  1. John

    ” Easiest way to keep this script out is by adding a few rewrite rules to your .htaccess file. ”

    Which rules do you use ? Can you share your .htaccess ?

    Reply
    • Akash Jain

      I use settings in Joomla 2.5 .htaccess. They have specified a few rules to block common exploits.

      RewriteEngine On
      ## Deny access to extension xml files (uncomment out to activate)
      #
      #Order allow,deny
      #Deny from all
      #Satisfy all
      #

      ## End of deny access to extension xml files
      RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|\%3D) [OR]
      # Block out any script trying to base64_encode crap to send via URL
      RewriteCond %{QUERY_STRING} base64_encode.*\(.*\) [OR]
      # Block out any script that includes a

      Reply

  2. how to remove those .evbk files ?

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *