JAB17 - Friend or FOE: the software update conundrum
by Nicholas Dionysopoulos
Your CMS just notified you that there's an update for an extension you are using due to security reasons. You install it happily and go about your way, resting assured that your site is now better protected against hackers. What if I told you that your site just got hacked instead?
In this session we'll talk about core and extensions update security, public key cryptography and how we could make Joomla! a forerunner in update security - without even breaking a sweat or backwards compatibility.
Disclaimer: I am not in the Joomla leadership and I have no say on future features of Joomla. This presentation will hopefully get a serious discussion started around update security which could lead into its implementation in future versions of the CMS. If you're in the PLT you are more than welcome to join us and offer your input!
Your CMS just notified you that there's an update for an extension you are using due to security reasons. You install it happily and go about your way, resting assured that your site is now better protected against hackers. What if I told you that your site just got hacked instead?
In this session we'll talk about core and extensions update security, public key cryptography and how we could make Joomla! a forerunner in update security - without even breaking a sweat or backwards compatibility.
Disclaimer: I am not in the Joomla leadership and I have no say on future features of Joomla. This presentation will hopefully get a serious discussion started around update security which could lead into its implementation in future versions of the CMS. If you're in the PLT you are more than welcome to join us and offer your input!