ROCKETTHEME IS CLOSING ON JUNE 30, 2025. As a thank-you to our community, enjoy 50% off all themes with the promo code THANKYOU before we shut down.
Read our Farewell Blog Post for more details.
Registration is off but user still registered
-
-
- March
- Sr. Rocketeer
- Posts: 150
- Thanks: 1
-
Hi all,
I was running J! 1.5.9 and promply upgraded to 1.5.14 just a few minutes ago. I didn't have registration turned on (only a login link) but someone just managed to register (under 1.5.9). I have notifications turned on when someone registers (even though it's not turned on) so I received an email confirming this. I then proceeded to delete them from the back-end. Has anyone else experienced this? Thanks.
-
-
-
- JEM
- Preeminent Rocketeer
- Posts: 17917
- Thanks: 4
-
I don’t believe it has anything to do with the version.
I recall hearing about this before.
Even if registration is turned off, if a user knows the address to the registration form, they can enter the address and still access it.
Most users are not that savvy, but it is possible.
While you’re waiting for a reply here you should also search or post joomla.org. - Thanks,
jim
-
-
-
- March
- Sr. Rocketeer
- Posts: 150
- Thanks: 1
- Thanks for the answer JEM, I had a feeling that was the case. I'll just go and tweak the pertinent files so they can't do it. I guess it's not considered a security risk. I'll dig around joomla.org but so far I haven't found what I'm looking for, but you guys and gals are just the best anyway, so my preference is to ask here first. Thanks again.
-
-
-
- drsawbones
- Sr. Rocketeer
- Posts: 154
- Thanks: 0
- Joomla Adict
-
hmmm, curious...wonder if a htaccess "deny all" in the com_user/view/register/.htaccess. (I didn't see much in that way at j.org.....I'll go try and see....
This situation represents yet another great reason to hide:
www.yoursite/joomla/administrator/index.php
edit: .htaccess in /view didn't do the trick. I guess Joomla has rights as valid user?
I suppose if that's the case, I'd be looking into setting a redirect on that page. I'll keep my eyes peeled for this as I cruise around the joomla world and let you know if I find anything.
Regards,
Doc
-
-
-
- March
- Sr. Rocketeer
- Posts: 150
- Thanks: 1
- Sorry about this folks, it seems that it was my mistake. There is no registration link on the front page, so I assumed that I had turned off the registration on the back-end. It seems that people can register if they know the correct url and registration is set to yes in the back-end. So I now have turned it off on the back-end and can rest easy. Thanks for the help. Hope you all have a good day.
-
Time to create page: 0.065 seconds