jSecure
Version
2.1.10 (last update on Feb 3, 2012)
Rating
Compatibility
Votes
Favoured
100
License
GPLv2 or later
Commercial
Type
Views
120807
Date Added
28 August 2008
Editor's Note
- This extension requires registration to download.
Drawback: Joomla has one drawback, any web user can easily know the site is created in Joomla! by typing the URL to access the administration area (i.e. www.site name.com/administration). This makes hackers hack the site easily once they crack id and password for Joomla!. Information: jSecure Authentication module prevents access to administration (back end) login page without appropriate access key.
Easy to install, jSecure adds a higher level of security to your Joomla website.
jSecure Authentication 2.X has a range of improvements including:
* Option to be emailed each time someone tries to access your admin page
* Option to block IP’s from accessing your administration area.
* Option to use a second login form to further protect you admin page.
* Master Password to access the jSecure Authentication Component
* Added log feature (the System will log who access jSecure)
* Improved backend presentation
* Improved support on our forum
Change Logs:
2.1.9(09-Nov-11):Fixed multiple E-mail option issue for the option to be emailed each time someone tries to access your admin page
Change Log for (J1.6):
2.1.9(21-Mar-11):
a. Language display problems in jSecure admin area (1.6)
b. Fixed installation issues with jSecure (1.6)
c. Fixed lightbox issues in jSecure admin area
2.1.9(18-Aug-11):
A. Separate boxes added for blacklist and whitelist IP Addresses for J1.6.
B. Multiple IP Addresses problem resolved for J1.6.
C. Fixed Master Password & Verify Master field bug for J1.6.
D. Language files updated for description of Verify Master Password field.
E. Updated validations for Master Password & Verify Master Password fields.
2.1.9(09-Nov-11):Fixed multiple E-mail option issue for the option to be emailed each time someone tries to access your admin page
Change Log for (J1.7):
2.1.9(18-Aug-11):
A. Separate boxes added for blacklist and whitelist IP Addresses for J1.7.
B. Multiple IP Addresses problem resolved for J1.7.
C. Fixed Master Password & Verify Master field bug for J1.7.
D. Language files updated for description of Verify Master Password field.
E. Updated validations for Master Password & Verify Master Password fields.
F. Fixed issues with tabs for Joomla 1.7.0 on IE7.
2.1.9(09-Nov-11):Fixed multiple E-mail option issue for the option to be emailed each time someone tries to access your admin page
2.1.10(3-Feb-2012):
A. Fixed JSecureConfig::$iplistB and JSecureConfig::$iplistW bug for Joomla 1.5.X, Joomla 1.6.X & Joomla 1.7.0.
B. Fixed issues with mail headers for Joomla 2.5 .
C. Added text input feild instead of text area in the form option of Basic Parameters for Joomla 1.5.X, Joomla 1.6.X & Joomla 1.7.0.
Personally, I like this extensions. But back before it lauched the component. Back when it just a plugin. It is easy to configure. Just add the secret key and it works just fine. But the component really need some extra effort to make it works. But overall. I give thumbs for the developers.
I've been using this component/plugin for many years. And it all come back to me as a perfectly nice and reliable Joomla extensions that I couldn't resist. Helping me out to cover up and secure my backdoor area from unwanted cheater and very unpleasant people.
Very recommended extensions that you must have on your Joomla site!
Very recommended extensions that you must have on your Joomla site!
Just great words for this component. Easy to install and to configure and it works out of the box! I'm using it for years now.
Feature requests:
-different key's for different users
-option to exclude component from joomla permissions
-if my site is offline I don't want do have input boxes in offline messages to login in frontend. Instead it will be great to have an frontend option to use your key and then you can get access to login.
Regards
Feature requests:
-different key's for different users
-option to exclude component from joomla permissions
-if my site is offline I don't want do have input boxes in offline messages to login in frontend. Instead it will be great to have an frontend option to use your key and then you can get access to login.
Regards
Owner's reply
Thanks for the suggestions. Feature requests 1 and 3 are really nice and fruitful.
We will plan and try to incorporate these features in the component. Can you please elaborate 2nd feature so that we can start planning over it.
Key points:
- it's easy to install and setup.
- admin users don't have any problem getting used to it
- it works.
We recommend it to all our clients, it's amazing the number of new clients that come to us that haven't done anything in the way of security. This is the simplest first step that costs less than a couple cups of good coffee.
- it's easy to install and setup.
- admin users don't have any problem getting used to it
- it works.
We recommend it to all our clients, it's amazing the number of new clients that come to us that haven't done anything in the way of security. This is the simplest first step that costs less than a couple cups of good coffee.
Really love this add on for joomla. So simple, works straight out of the box (J1.6). Should be incorporated into the core functionality.
Having been hacked to the hilt whereby a hacker managed to delete my entire site somehow, I figured it was perhaps about time to start taking security a tad more seriously, so hunted for suitable Coms to help with the process. This & one other (RSFirewall) have proven to be the perfect combo. Like others I managed to lock myself out of the site first time around too, and wish I'd had the wit to return here to read how to overcome that easier than doing as I did and deleting the Com entirely off the database! But once I got the knack I've found it hugely useful - at least now I get forewarning of the multiple attacks to gain entrance via the Admin and the sneaky ways that are being used to try to do it. More importantly I can see whether they're succeeding before they get that far i.e. if they get as far as the login page to start with - so far, none have!!
However, I do have a couple of minor issues - while there is now the ability to black/whitelist IP addies, there's no easy way to see which are which once you put them in - all that happens is you get a list and as such I've not put my own IP in just in case it gets black instead of whitelisted without me realising. Would be much better if each list was fully shown as what it is.
And that's the only reason I've not given it a 5 star rating as otherwise it really is great but maybe some more work on it would have it truly superb!
However, I do have a couple of minor issues - while there is now the ability to black/whitelist IP addies, there's no easy way to see which are which once you put them in - all that happens is you get a list and as such I've not put my own IP in just in case it gets black instead of whitelisted without me realising. Would be much better if each list was fully shown as what it is.
And that's the only reason I've not given it a 5 star rating as otherwise it really is great but maybe some more work on it would have it truly superb!
This is a good product. It is well worth the money spent, but support is lacking. There seems to be a bug with jSecure and JoomlaWatch. (Most recent versions of both with Joomla version 1.5.22) With jSecure enabled you will not be able to access JoomlaWatch in the backend to view stats, etc.
You have to disable jSecure, then logout, then log back in via the default back end url. I've tried disabling and re-enabling the modules in different order and still the same result.
It's been over 5 days after posting the issue on the jSecure forums/support without even a reply saying that they will look into it. I don't expect a solution right away, but they could at least reply saying that they will look into it.
This product definitely would receive five stars if not for lack of support. Again, for the price I don't expect much, but at least a reply that they will look into it.
You have to disable jSecure, then logout, then log back in via the default back end url. I've tried disabling and re-enabling the modules in different order and still the same result.
It's been over 5 days after posting the issue on the jSecure forums/support without even a reply saying that they will look into it. I don't expect a solution right away, but they could at least reply saying that they will look into it.
This product definitely would receive five stars if not for lack of support. Again, for the price I don't expect much, but at least a reply that they will look into it.
It's such a simple concept, but keeping people away from the back end login of my Joomla installs adds that extra peace of mind! I've been using this extension for years now, and though I was surprised to see the newest version for Joomla 1.6 needed to be purchased, I was happy to buy it! Thanks to the developer for a simple yet great little security tool!
I have used this for a while now, starting with the free version and have just upgraded to the commercial one. I don't expected people to work for nothing.! It has been a reliable security feature for my joomla sites and easy to configure. As for the remark made by Jacob about being unable to log in to your site if you forget the code, The answer is simple, log in to your database and read the code from there.
works right out of the box. If you forget your url setup to access admin area, just look in your database for the jsecure plugin and deactivate (publish=0). So you can access the admin area with the protection link.
Just a great tool to make joomla much safer.
A++++++++++
Just a great tool to make joomla much safer.
A++++++++++
Page 1 of 2