Joomla exploit fix

As many web developers now frequently use Joomla as their application, we have researched a fix to block some common Joomla exploits. This article contains tips on what codes ca be placed in your .htaccess file inside your httpdocs directory.

########## Begin – Rewrite rules to block out some common exploits
#                             
# Block out any script trying to set a mosConfig value through the URL
RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|\%3D) [OR]
# Block out any script trying to base64_encode crap to send via URL
RewriteCond %{QUERY_STRING} base64_encode.*\(.*\) [OR]
# Block out any script that includes a <script> tag in URL
RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR]
# Block out any script trying to set a PHP GLOBALS variable via URL
RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]
# Block out any script trying to modify a _REQUEST variable via URL
RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2})
# Send all blocked request to homepage with 403 Forbidden error!
RewriteRule ^(.*)$ index.php [F,L]
#
########## End – Rewrite rules to block out some common exploits

Local Government Development Foundation – Online

LOGODEF is a Manila-based non-stock, non-profit organization established on March 21, 1989 for the purpose of providing professional services to local governments in support of central government efforts to promote the continuing development of Philippine local authorities.

The Foundation is one of the major institutional partner of the Konrad Adenauer Foundation (KAF) in strengthening local political institutions in the Philippines. The organization is also an advocate of interlocal cooperation. It’s main objectives include helping local governments help themselves is the basic philosophy of the Foundation in the promotion of local autonomy and self reliance towards the attainment of effective decentralization.

Konverg.com

empowering web technologiesKonverg is a Business Technology company dedicated to helping businesses owners get empowered with the latest web technologies.

It aims to provide the best and most relevant business applications with the lowest total cost of ownership to small and medium enterprises. In a competitive business world, Konverg believes in creating an “equalizing” force to small businesses by providing latest business tools for Customer Relationship Management (CRM), Financial Management, Salesforce Automation and Business Intelligence that are otherwise available only to large enterprises with their huge IT Infrastructures and budgets.

Konverg is a private company with offices in the US, Middle East and the Philippines.

Microsoft Hosting Conference

Pictures from the conference:

The departure area of the Bangkok International Airport

Thai International Airport

JJ Jager of SWSOFT in one of the technical sessions showing off billing and hosting automation provisioning:

JJ Jager, SWSOFT

Mr Alvin Lim, Director, Hosting and Software Services, communications and Media Sector, Asia Pacific with Mr Wilson Chua, President, BNS

Alvin Lim Microsoft Director, Hosting and Software Services Asia Pacific

BNS to Attend Hosting Day in Thailand

 

BNS is attending the Microsoft Hosting Day South East Asia and India. This event will be held at theClaming haven of The Metropolitan Hotel in the urban hubbub of Bangkok. This invitations only event provides an excellent opportunity for BNS to share ideas and best practices and learn from key hosters in the South East Asia and Indian continent.

Hosting Day South East Asia and India is a must-attend event that offers a unique opportunity to network with key Microsoft Executives, and industry players among which includes JJ Jager of SWSoft (Parallels.com) who will be a speaker about parallels hosting automation.

Program Highlights:

• The Microsoft Vision for Software + Services

• Virtualization in Hosting using Hyper-v

• Microsoft & Communications Sector perspective on hosting business

• Public Sector as an opportunity segment

• Windows Server Hosting Guidance

• Microsoft Hosting, Rules of Engagement: Microsoft Licensing

• Hosted Dynamics: The buzz around Hosted CRM

• Building New Channels to Reach SMBs with SaaS-Based Services

• SaaS Incubation Center Program Workshop

• Selling Business Email and Attached Services to SMBs

• Unified Communications and Windows Mobile technical session

• Unified Communications and Windows Mobile session

• Windows Mobile Workshop

• Hosting Rich Internet Applications with Silverlight�

DDC Land Incoporated

DDC Land Inc., formerly Dry Dock Corporation is taking the first step on the road in fulfilling every Filipino dream as they are opening their door to very affordable housing units.

Their continuing success inspires the company to pursue the quest for growth. Dry Dock dreams to be part of the solutions that would create communities, homes, and places that are decent, livable and safe. It is the company’s desire to shelter every family that is affordable to everyone

AliwanFiesta.com.ph


Aliwan Fiesta is a yearly competition of 3,000 plus dancers, musicians, and acrobats which performs through a four-kilometer stretch along Roxas Boulevard, from Quirino Grandstand to the CCP Complex. Massive contingents of streetdancers are accompanied by gigantic floats atop of which ride flawless muses – all depicting the most popular festivals throughout the archipelago.

Heart Evangelista Official Website – Online!

heart.jpgBNS Hosting is proud to web host the official website of the one of the Philippines’ hottest singer-actress, Heart Evangelista.

The website contain Heart’s biography, photo gallery, multimedia stuffs and blog.  It also includes her charity page and a message board for the fans to let her know everything they like about their idol.  Heart, who is formerly a talent of Star Magic now continues her career with Manila Genesis.

BNS Shared Hosting now at Plesk 8.2 for Linux

BNS had just upgraded to the new Plesk 8.2 for Shared Linux web hosting.  Main features include:

1. Application Packaging Standard (APS) ? The new site applications format is open and can be used by individual software developers, ISVs and service providers for packaging their own applications.
       PHPBB2 Forum
      
Joomla! Information Portal
       Moodle Online Learning
       Mantis Customer Support
       Serendipity Personal Portal
       WebCalendar Groupware
       phpMyVisites Statistic
       XOOPS Portal
       Drupal CMS
       MyOrgBook Calender
       B2evolution
       BBclone
       Coppermine
       Mambo

2.  Single Sign On (SSO) ? Single Sign-on technology gives ability to use single authentication gate (like Active Directory) and share user sessions between multiple applications. Thus the user does not need to type login/password each time he switches to another application easing the ability to integrate multiple applicaations. In this Plesk release Single Sign-on comes in status of technology preview, therefore it is not enabled by default.

3. MIVA Merchant Module ? Now available on all platforms, MIVA Merchant is a storefront development and management system. It integrates catalog, product, fulfillment, maintenance, category management, shopping cart, order processing, and credit card processing in association with many of the MIVA payment providers, including Authorize.net, VeriSign.com, and several others.

4. Plesk Anti-Virus Powered by Kaspersky ? Now available on all platforms, the Kaspersky Antivirus (KAV) filter for email is able to check incoming/outgoing emails filter attachments via name and MIME type
operate infected objects according to user’s decisions.

5. Ruby on Rails. Ruby component is updated to latest stable version (1.8.6).

6. Horde components upgrade.  Horde and it’s components upgraded to latest upstream releases. For this moment this releases are:
 horde to 3.1.4
 imp to 4.1.4