Menu

Topic-icon Securitycheck and Securitycheck Pro 3.1.6 released

More
4 months 1 week ago #6804 by Jose
Ihave updated Securitycheck and Securitycheck Pro to version 3.1.6 to fix some bugs and add new features:

+ Database update until May 139 (5 new Joomla core and 5 new vulnerabilities added) (both versions)
+ Malware database updated (only Pro version)
+ Improvements in file integrity (only Pro version)
Now we see a list of all extensions updated/installed since last integrity scan. This way we have more information to mark files as safe.
+ Improvements in firewall rules (only Pro version)
In the past "Super users" group were excluded from firewall rules as I considered it as a "privileged" group. This could be used to launch certain attacks with success. Now firewall rules are applied to all groups, increasing security. If for some reason do you want to excluded any group, just go to Configuration -> Rules Management. Also the XSS filter has been improved to detect javascript events and cut connection, as some attacks are successfully if we have the "redirect after an attack" option enabled.
+ Fixed style bug in 'View Track actions logs' (only Pro version)
Css file was not loaded.
+ Improvements in "File injection" option of .htaccess protection (thank you very much for reporting this Philippe!) (only Pro version)
Now this option preservers the scheme.
+ Modified non-executable extensions list (thank you very much for reporting this Philippe!) (only Pro version)
Now .pdf files are also excluded when "Scan executable files only" is enabled.
+ Changes in firewall config to avoid a mod_security rule (only Pro version)
Some words used in the "second level protection" tab are detected as php injection by a mod_security rule. Now its content is previously encoded before sending the form to avoid this issue.
+ Added some missing strings in "Spam Protection" tab (thank you very much for reporting this Carlos!) (only Pro version)
+ Fixed bugs with css and javascript added in previous version (only Pro version)
+ Fixed bug in malware scanner detecting enconded content on IIS (thank you very much for your patience Glen!) (only Pro version)
+ New translation: Romanian (thank you very much for your work George!) (only Pro version)
+ Fixed bug displaying css in Chrome browser (thank you very much for reporting this Howard!) (only Pro version)

Regards,
Jose

Please Log in or Create an account to join the conversation.

Time to create page: 0.056 seconds
Powered by Kunena Forum

Login or Sign In