Uwe

NinjACL Internal Alpha Test Phase Begins Now

I'm proud to announce today, that I've finished work on NinjACL to almost 90% and am able to set the extension on Alpha Status now. So we Ninjas can begin testing on this component from tomorrow on.

Follow up:

Some Backgrounds

NinjACL is a fork of the ByOS Tech's JACLPlus component. I reorganized the whole source code, and threw my eye on memory consumption, parser friendlyness and system security. I really do not understand, why >:XX left the component's admin section fully vulnerable to [1] Cross Site Request Forgery (CSRF) attacks.

As of the fact, that one [2] cannot really secure a web application against such attacks, web developers even have to take measures on hardening network listening software as best as they can! And as of the next fact, that the Joomla!™ Core team has released security patches, respectively version 1.0.15, we even do not have to reinvent the wheel! We only need to take care of. :!:

I believe that the release of NinjACL is one of our greatest efforts in customer care and system security. We will certainly keep our eyes on our other Keepers too.

[1] Cross Site Request Forgery
[2] Using Prism To Administrate Joomla Safer

« The Spammers get to Twitter!Where does Ninjoomla go from here? »