settings

  • Anyone who maintained/developed something with or for Joomla, or needed to troubleshoot something on a misbehaving Joomla site knows the feeling: something does not working, and the available error messages aren't showing enough information to help you track down the root of the issue.

    Any extra bit of info can help, so here is a tip for Joomla 1.7 which might help you got that.

  • Did you added something to a perfectly working Joomla site, and you suddenly have a blank age instead your site? Chances are that you hit the memory limit allowed to you on your server. Memory limits help to keep scripts from running out of control or using up all of your free memory. This value is generally carefully set by your host's SYSADMIN to let the hosted sites to run smoothly without bottlenecking each other by overusing this precious system resource.

  • If you think, that is enough to build a nice site with a great content to have lots of visitors flowing to your site you're wrong. There are millions of webmasters trying to do the same. And Google and other search engines simply can't find, index and sort all of these sites, and show them to your potential visitors. So you need to do a little more to help these search engines - and to help yourself!

  • The full error looks like this:

    JFolder::create: Could not create directory
    Warning! Failed to move file.

    You might see this nagging error every once you install something to your Joomla site. Apparently everything working, but - as any errors you see - should alert you: something isn't right with your site, and even if apparently everything works, you might have unexpected problems later!

  • ACL stands for access control levels. It refers to who has permission to do what on the website, including read, create, edit, delete, or log in, among other permissions.

    Many think of ACL as relating to the front end of a website only. For example, when I log into the website, what articles do I have available to me? And if someone else logs into the site, do they see the same articles, or do they see different ones?

  • As I said elsewhere on the site one of key issues of running Joomla on a Windows server is to understand and apply correctly the Windows files and folders permissioning system to your Joomla install. Instead of writing my own compilation of how-tos, I reproduce here the excellent tutorial written by Russell Winter on the Joomla tutorials site. All kudos are going to him!


    For those of you that are either developing or delivering your Joomla! Web-Sites from the Windows environment, it is sometimes difficult to obtain relevant information regarding permissions. Unfortunately, it is a fact that most Web-Serving is offered under Unix and that Unix is pretty well documented within this environment. Hopefully the following information will go some way to clearing up any confusion and provide a little guidance.

  • Did you had this experience? Couple of days ago I just turned on SEF and the inner pages began to act weird - images disappeared, modules misbehaved, scripts weren't loaded...

    My first reaction was that I have set something wrong... or the SEF component I used have a flaw. After few days of digging I found that the issue has a much simpler cause.

  • It's always a wise move to move your sensitive files outside of the so called WEBROOT, the directory which is used by Apache to show your website. This way you can be sure, that nobody else, but your Joomla core code can use these files.

    Moving some files/folders, like the main configuration.phpor the location of admin login may be tricky, but mowing these two key folders is relatively simple.

  • Most of attacks on the web - and Joomla sites aren't an exception - are made fully or in first phase at least by automated robots. These are using known entrance points as administrator logins to most used software solutions to try they chances to break in. So it's a wise move to change these well known locations. But wait! The need to upgrade compatibility may made this difficult, so, how we can do this without changing a line in Joomla code?

  • YOnce the basic setup is done, yo need to tweak your Joomla installation to behave as you need. you will need individual configuration settings for your website elements (components, plugins, modules, content pages, templates): in the Joomla lingo we call them options. These options are applied to the whole website, for users, categories, modules, components. Since Joomla 1.6 this has became standard: you will always find an icon named Options in the backend pages, which are providing you the interface to set your preferences for the given component.

    For example in the Joomla 1.6+ in the template manager you have in the Options a way to switch on or off the support for the well known trick to append "?tp=1", which reveals you the available module positions for your templates.

    Now you can block attempts to visualize by others these module positions by visiting the address:

    http ://yourdomain.com/index.php?tp=1

    BTW: The "tp" stands for template position and the trick is one of core Joomla tricks.

  • Joomla Privacy tools suite is a welcome addition for all Joomla webmasters- especially for those in EU. GDPR regulations make this not only a desirable asset, but a must have item.

    But what about multilingual sites? Looking to the configuration settings it is not obvius at all how you can use in your multilingual site properly.

  • Clickjacking is a browser security issue and is a vulnerability across a variety of browsers and platforms. A clickjack takes the form of embedded code or a script that can execute without the user's knowledge, such as clicking on a button that appears to perform another function. The hacker installs an invisible layer over the existing site, hijacking the user's clicks. The suspicious-less user will perform this way actions they never intended to, from apparently inoffensive ones, as following someone on Twitter, to really nasty things, like password, credit card information theft, and anything else you might (not want to) do on a webpage.

  • Joomla has everything you may need. Right? If you take a look to the Joomla Extensions site, you may agree with this. But, as always, there may be cases, when the above statement is wrong. For specific need he simplest approach may be to use for specific purposes a standalone script. You can solve the problem - apparently - by using Joomla's wrapper feature, and use your scripts as they where part of your Joomla site. Almost perfect solution you may think... but your scripts are directly accessible by their physical URL, not only through the Joomla interface. What you can do about?

    A lot. And surprisingly easily.

  • Joomla specifies certain settings that are recommended for proper functioning of the system. A list of the recommended and actual settings is displayed when you install Joomla. One of the recommended settings is to have 'Display Errors' switched on. This is very useful when developing and debugging a site, but there is a security vulnerability in PHP (not Joomla, but the language in which Joomla was written) which may allow cross-site-scripting attacks when the display errors option is enabled, if you have a script which produces an error.

  • Joomla, as most CMS's excells by making it easy to manage a website page. Offers a pretty easy way to manage Web-based publishing, format management, history editing and version control, indexing, search, and retrieval. Joomla has an impressive suite of features, but these features require some special considerations.

  • The most comprehensive analysis of trends in the website security finally is out. There are couple of interesting fact worth highlighting.

    Most important is something we expected: Joomla is emerging as the most secure CMS.

  • After upgrade to Joomla 3.2 from previous Joomla 3.* versions you might see the above error message in the backend, or, worse, you simply don't receive any e-mail notifications you usually do. And the site worked just fine before the upgrade!!

    If you have registration enabled, or you use the site to interact with your visitors/customers the side effects can be really damaging - nobody gets any mails - and you evend don't see any notice about, until you began to dig for the causes, and, for example, try to send a message for yourself from backend. This potentially can roun your online business or community. Apparently everything is OK, all settings are correct, but the mails are simply not sent.

    What's the cause and, more important, how you can fix it?

  • Being disabled by default, this very powerful new core component shipped with Joomla 2.5 remains unnoticed by many Joomla site owners. It's time to began to use it and unleash the power hidden here.

  • Have you ever seen this error message? Yea, correct it's seen in Media Manager when you try to upload files of certain types, as a MP3 file to use with your brand new MP# player module, or an Excel sheet to share whit your visitors.

    Embarrassing. Let's get rid if it!

  • SEO is good. SEO is great. Making search-engine spiders visiting your site is even better! Or not??? Recently one of my client has complained, that he was almost banned from one host, because the search-engine bots where "hammering" - read overloading - the server. Ouch...