Joomla's template override and security
Question
So whenever you need to make a change to a component, module, etc you're supposed to use an override so that it won't be altered on future core updates.
Could those overrides be a security risk as the base code is now older as you update the core? I've never seen any mention of updating the overrides with new updates.
3 answers
solution1
2 2012-09-30 14:09:20
No, they aren't a security risk. All the overrides do are call the HTML or CSS from another location. Overrides are only needed for styling and aren't used for PHP or Javascript functions.
Quote: I've never seen any mention of updating the overrides with new updates.
That's because they aren't supposed to get updated.
solution2
0 2012-09-30 15:08:10
覆盖被认为会改变扩展的显示方式,但依赖于此并认为没有其他代码可以存在(我在不同的扩展中看到一些“不良做法”)将是一个安全风险,你应该检查每次发布时都会进行更新。
solution3
0 2012-09-30 23:18:37
What I would say is pay attention to the updates, especially the specified security updates which are always marked separately in the releases (and have their own feed etc) and if you see a layout you have overridden getting fixed then check yours. The one thing that might be involved in a layout security is that output filtering was missed, so if you have been careful in your layouts then you'll be okay. It' baseline essential to be subscribed to the security feed if you are using Joomla.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.