Completed my first Joomla driven site ... www.krisholm.com

[crh]

I recently completed the initial launch of my first Joomla driven
website for a client, Kris Holm Unicycles (www.krisholm.com). Kris is
a world renowned unicyclist from Vancouver and manufacturer of his own
engineered line of unicycles and accessories.

The site is completely run on Joomla 1.5.

Joomla is an interesting beast. In the beginning I struggled with its
limiting two tier content system (Section -> Category -> Article
relationship) and the Menu to Content to URL relationship. Coming from
a traditional static/dynamic web development background I was
extremely worried that Joomla wouldn't offer the flexibility that I
was used to. After much frustration, I learned to accept Joomla's
nuances and rather than fight its structure I accepted it leading to
harmony and setting the stage for a relatively rapid development.
Joomla certainly allows one to quickly develop a rather flexible site
while focusing on the content rather than the technical implementation
details.

That being said, I did find it particularly challenging to create a
visual style using readily available commercial Joomla templates that
didn't scream it was a Joomla site. Thru my endeavors I have become
quite proficient in spotting Joomla run sites and in some cases even
nailing the template by name. What I did learn is that Joomla is only
as good visually as the template you choose and that many of Joomla's
built-in methods for displaying things like category/section lists
should be avoided if you don't want your website to stick out like an
obvious Joomla website.

All in all I'd recommend Joomla as the CMS engine of choice for quick,
easy and relatively good looking websites and I look forward to
working on more Joomla driven projects.

Some facts about the current Joomla setup on Kris Holm Unicycles:
- It's running on Joomla 1.5.x (but not the latest 1.5.5 yet)
- 3rd party plugins ...
Linkr (http://codes.mtlnews.com/linkr-2)
Simple Image Gallery Pro (http://www.joomlaworks.gr/)
- 3rd party modules ...
JoomlaAtWork SEO Core Patch (http://www.joomlatwork.com/products/
free-downloads/seo-patch-joomla-15.html)
YooScroller (http://tools.yootheme.com) - used for the product
navigation
YooCarousel (http://tools.yootheme.com) - used for unicycle
product details
- Template is PixelsParadise.com MP_Gigcs
- Uses Joomla 1.5's built in SEF URL's

Multi-language support will be introduced in the future through the
use of JoomFish (www.joomfish.net) and there will be continued
enhancements/additions.

Any feedback is greatly welcomed and I look forward to interacting
more with the Toronto Joomla community.

Cheers,
Carl

[Michelle Bisson]

Carl,

Well done site!  Very attractive!  I love a site that has lots of very visually appealing photos!


The more one understands Joomla! power and flexibility the more diversity one can have visually.

I have a habit of trying to avoid easy tell tell siigns of Joomla! when I design as much as I can. Although, we still need to work with some of its particularities.  If one has design, programming skills and time it definitely gives them an edge to go beyond Joomla! boundaries.

Michelle Bisson
Joomla! Core Team member
JUGT Core Team member

[Phil Snell]

Seems that a group of hackers is targeting Joomla sites using a security hole in version 1.5.5..  many sites have been hacked recently.  Recommend everyone check your sites, do a backup, and patch to 1.5.6. 

 

 

[Ian MacLennan]

Done.

Will have to remember to keep things up to date - we were on 1.5.1 before.

Ian

[Michelle Bisson]

Yes thank you!

Everyone should sign up to receive the newsfeeds for official Joomla! Announcements so that we are informed immediately about these issues. 

Michelle

[Michael Pinkus - Grape Guy]

Hello Everyone ...

Thought I would throw a question or two out to the group and see if
anyone can come up with a good answer.
Awhile back Michelle made mention of some Joomla books ... was
wondering if anyone could recommend a good, easy to follow, easy to
understand, Joomla book - not for programmers but for end users such
as myself to help maintain and upgrade my website.

Thanks.
Michael

[Keith McCartan]

Beginning Joomla - From Novice to Professional by Dan Rahmel helped me get
started.
Publisher is Apress.

Couriers.com
Keith McCartan

[Patrick Shelston]

Michelle, are you talking about the RSS feeds?

Maybe they should also start a mailing list.  For security-type events I'd rather have a push than a pull system.

-Patrick

[Ian MacLennan]

You can also subscribe to the announcements or security forum where you will get notifications about announcements and security updates.

Ian

[Michael Pinkus - Grape Guy]

Thanks Keith ... and this book is for users not programmers correct.
Michael

[Keith McCartan]

Geared towards users mostly but does touch on some technical issues.

Really for people who want to create a Joomla site that are new to the
technology. Has sections on administering, adding content etc.

If you want I can send you my copy. I don't have a need for it. I am in
Oakville but could mail it to you.

Keith McCartan
kmcc...@couriers.com

[Patrick Shelston]

Good idea, Ian.  I just subscribed.

Thanks!
Patrick

[Michael Pinkus - Grape Guy]

Keith - that would be great.
I had many questions - which is why I originally titled my email "3
Questions" but then I thought - maybe the book would tell me all that
stuff ... like how to change the default font size on my website and
what kind of content management system works with Joomla ... but if
you could send the book that would be great.

My address is below. If you are in TO in the next week or so I can
arrange to pick it up from you. Otherwise mail is perfect.
One of these days if we're at the same meeting I'll be sure to bring
you a bottle of wine or buy you a beer.

Cheers
Michael Pinkus
51 Bannatyne Drive
Toronto, Ontario
M2L 2P2

[Michelle Bisson]

It could be good when the next time the JUG Toronto meets for everyone who has a Joomla! book to bring it so that others can see them to help them decide which books meets their needs the best.

Can I invite everyone who plans to purchase a Joomla! book or any other book for that matter to do so on the Joomla! Amazon.ca shop?

Here is the link:
http://shop.joomla.org/amazonca-bookstores.html

Joomla! makes about a 4% commission on every item (Joomla! related or not) if you go through their shop.  When ordering Joomla! books, make sure it is for the version 1.5 or 1.0 before ordering. 

Thanks!

Michelle

[Michael Pinkus - Grape Guy]

Morning All ...

Seems like last night someone hacked into my site and locked me out -
well not entirely - I still have access to the Super Admin and got in
the back door that way ... but they have locked out my home page and
I can't seem to get into it ... anybody have any advise?

Michael

[Joe Sonne]

Can you restore your domain from an earlier backup and make sure your
site is up to date with the latest version of Joomla?

[Michael Pinkus - Grape Guy]

Joe ... thanks for the input but you're talking to a green horn
novice here - I usually just do the back end work and ad content ...
I was wondering if there was a way to unlock using the Super Admin
functions - if not I have to go to an outside source.
M

[Joe Sonne]

Hi Michael,

When a site gets hacked it often means that changes have been made to
core files or even database changes. That's why I recommend going back
to a pre hacked state. My server provider will be able to restore an
earlier version of the site for me so that any maliciously changed
files are wiped out. This service entirely depends on who your hosting
provider is.

What version of Joomla! is the site?

[Bhupesh Shah]

Hi Michael,

If you can get in using your Super Admin, you should be able to load this and check to see if your files are corrupted:

http://www.joomla-addons.org/joomla-diagnostics.html


Then - use one of these to protect yourself in future. http://extensions.joomla.org/extensions/access-&-security/backup

Good luck,

Bhupesh

[Steve Watson]

A common hack. Did you get the red crescent flag like I did?
My fix was relatively easy - go into the ISP control panel and file manager
and look for a file modified on the date of the attack - something like
'index.php' in the default template directory I believe. Replace the file
with a backup copy which should fix things. Displaying the file should
reveal the hacked code.
A caveat or two:
Does your system still have the 'admin' user?- best to disable/remove (my
hacker used this and changed the password).
Does your default template and administrator directories allow user write
permissions? (e.g. rwxrwxrWx)- best to disallow.

Steve

-----Original Message-----
From: toron...@googlegroups.com [mailto:toron...@googlegroups.com] On
Behalf Of Michael Pinkus - Grape Guy

[WOW Network Team]

A great tool I noticed, not knowing exactly how you were hacked but is to
change the common yoursite.com/administrator.

Using this plugin tool --> extensions -->jsecure authentication - allows you
to change the admin section to: yoursite.com/administrator/?somethinghere

http://extensions.joomla.org/extensions/5809/details

Just added security and very simple to install.

[videovic]

I religiously install Joomla Pack, the back up component.

With a joomlapack backup, you can restore your entire site in less
than 2 hours,

Simply delete all the files not belonging to your server, (the folders
not belonging to you or joomla)

Then upload the files and run the installer. It will give you all
such a sense of peace.

For developers, Its really good also for use as a master build, and
for backing up after long development sessions.





On Jun 2, 8:50 am, Michael Pinkus - Grape Guy

[FayeC]

And don't forget to change the permissions to your configuration file
to 444 once the site is installed.

[Bob Bloom]

A word of warning about JoomlaPack, which I use extensively. Double
check that the zip file it creates actually works. There's a warning
somewhere within JP about this. Use TAR instead.

To my shock, a few times either the zip file messed up; or, surprise!
the database dump messed up.

I can't emphasize enough that it's not the backup that's important;
rather, it's the RESTORE that's critical! Finding out that your files
don't actually restore when you need your restores under duress is not
the education you want. So TEST your backups!

Oh, and do ensure that your JP backups reside outside your site's
path.

-Bob

[Alan (instance)]

I completely agree with this. The bug has something to do with
calculating the CRC on the zip file. The irony is that the data in the
zip seems to be ok. But their "internal" packing algorithm works just
as well and doesn't fail.

Lastly, not only should your backups be outside the web server root,
but you should set up a process to download them. If you're doing
backups because your hosting company doesn't, then the only safe place
for them is on another system.