General

This article describes how to connect to a TCP port 80 on a Web server using telnet.

HTTP Protocol Basics

HTTP[1] is a simple text protocol. So telnet lets you easily test the operation of port 80.

You can test the connection using the following Linux commands:

  1. Enter telnet SERVERNAME 80. Telnet will simply connect to the 80 host port of the specified host name.
  2. If the connection is established via TCP, telnet will respond with the following response: Connected to SERVERNAME. and Escape character is '^]'.
  3. You can retrieve the site from here by using the HTTP protocol. To do so, enter the following two lines with Enter:

    GET / HTTP/1.1

    HOST: HOSTNAME

  4. In the server response we get the HTTP status and the web page (such as HTTP / 1.1 200 OK and so on).

Example

In the following example, we will check the http://richardbuz.de page. With the help of the following Linux commands, enter the commands with enter:

telnet richardbuz.de 80

GET / HTTP/1.1

HOST: richardbuz.de

The richardbuz.de server will reply to HTTP and return the HTML code of the page:

[[email protected]]$telnet richardbuz.de 80
Trying 2a00:c760:83:def:aced:ffff:b921:361f...
Connected to richardbuz.de.
Escape character is '^]'.
GET / HTTP/1.1
HOST: richardbuz.de

HTTP/1.1 301 Moved Permanently
Date: Fri, 25 Aug 2017 08:12:53 GMT
Server: Apache
X-Content-Type-Options: nosniff
Location: https://richardbuz.de/
Cache-Control: max-age=1209600
Expires: Fri, 08 Sep 2017 08:12:53 GMT
Content-Length: 230
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>301 Moved Permanently</title>
</head><body>
<h1>Moved Permanently</h1>
<p>The document has moved <a href="https://richardbuz.de/">here</a>.</p>
</body></html>
Connection closed by foreign host.

Reference:

If you want to disable recommended to a friend on the VirtueMart product page, you can disable in VM Admin Configuration/Site/Display/Show the "Recommend to a friend" link.

Here's how we patched the vulnerability on our sites:

Edit <Joomla root>/administrator/components/com_virtuemart/html/shop.recommend.php

Right under

if( !defined( '_VALID_MOS' ) &amp;amp;&amp;amp; !defined( '_JEXEC' ) ) die( 'Direct Access to '.basename(__FILE__).' is not allowed.' );

add this:

header('Location: http://joomla.org/');
exit;

 

The default url for Joomla to access the user registration page form without creating a menu link is:

index.php?option=com_users&view=registration

Just add that string after yourwebsite.com

For example:
http://www.yourwebsite.com/index.php?option=com_users&view=registration

The default url for Joomla to access the user contact form page form without creating a menu link is:

index.php?option=com_contact&view=contact&id=1

Just add that string after yourwebsite.com

For example:
http://www.yourwebsite.com/index.php?option=com_contact&view=contact&id=1

If you want to disable, but not access the Joomla! administration interface, you could disable in the phpMyAdmin

Open the phpMyAdmin interface, and find the jos_extensions table, then find the com_users element row, and set the enabbed column value to 0.

UPDATE `jos_extensions` SET `enabled` = '0' WHERE `jos_extensions`.`element` = `com_users`;

If you want to disable contact form, run the following query:

UPDATE `jos_extensions` SET `enabled` = '0' WHERE `jos_extensions`.`extension_id` = 8;

For older Joomal versions, the jos_components table can we disable the availability of these modules.

Disable URL with .htaccess file:


<IfModule mod_rewrite.c>
 RewriteEngine On
 RewriteCond %{REQUEST_METHOD} ^.*POST.*
 RewriteCond %{THE_REQUEST} ^.*option=com_contac.* [NC,OR]
 RewriteCond %{THE_REQUEST} ^.*(option=com_contact&view=contact&id=).* [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*/component/contact [NC,OR]
 RewriteCond %{REQUEST_URI} ^.*/component/users/* [NC,OR]
 RewriteCond %{THE_REQUEST} ^.*(option=com_users&view=registration).* [NC]
 RewriteRule ^(.*)$ index.php [F,L]
</IfModule>