Peter Kraume, Author at TYPO3worx

Unprotected .git or .svn directories put your website at risk of information disclosure

dvcs_security

Version control software is very popular among web developers. The most used tool might be Git. Unfortunately the repository directory, e.g. .git is often unprotected in production environments. These folders not only contain the source code of a website but also database credentials, API access keys or tokens for popular cloud services like Amazon AWS, salts and hashes. Even more problematic is private data contained in sql dumps or csv files.

Studies e.g. by Internetwache.org or Jamie Brown show that a reasonable amount of websites is affected by this problem. (more…)

1 Comment

November 25, 2015

TYPO3 CMS

Book “Modern Extension Development for TYPO3 CMS with Extbase & Fluid” available in English

A couple of days ago Patrick Lobacher announced the immediate availability of the book “Modern Extension Development for TYPO3 CMS with Extbase & Fluid” in English language. This book is not only the translated version of the German edition but also revised to take TYPO3 CMS 7 into account. The translation has been reviewed by two English native speakers and the new book has been published by Open Source Press.

(more…)

1 Comment

May 1, 2015

Community / TYPO3 CMS / TYPO3 Community

Have a day full of fun and prolong your TYPO3 integrator certification along the way

Today is the last day for grabbing an early bird offer for the TYPO3 Alumni #certiFUNcation Day on the 5th of June, 2015 in one of Europe’s biggest theme parks: Phantasialand near Cologne, Germany! Join, learn, and meet present and future TYPO3 Certified Integrators!

(more…)

0 Comments

April 30, 2015