Security Concerns
Permalink
Hello,
I have installed Concrete5 a few days ago. I just checked with awstat which pages of my website are most viewed and I noticed that already 250 people have been interested to look at a file installed by concrete5.
It is located in localhost/concreteinstallation/index.php/tools/required/i18n_js
Here is what you can find in it:
var ccmi18n = {
error: "Error",
deleteBlock: "Delete",
deleteBlockMsg: "The block has been removed successfully.",
addBlock: "Add Block",
addBlockNew: "Add Block",
addBlockPaste: "Paste from Scrapbook",
changeAreaCSS: "Design",
editAreaLayout: "Edit Layout",
addAreaLayout: "Add Layout",
moveLayoutUp: "Move Up",
moveLayoutDown: "Move Down",
moveLayoutAtBoundary: "This layout section can not be moved further in this direction.",
lockAreaLayout: "Lock Layout",
unlockAreaLayout: "Unlock Layout",
deleteLayout: "Delete",
deleteLayoutOptsTitle: "Delete Layout",
confirmLayoutPresetDelete: "Are you sure you want to delete this layout preset?",
setAreaPermissions: "Set Permissions",
addBlockMsg: "The block has been added successfully.",
updateBlock: "Update Block",
updateBlockMsg: "The block has been saved successfully.",
closeWindow: "Close",
editBlock: "Edit",
compareVersions: "Compare Versions",
blockAreaMenu: "Add Block",
...
Should I have to be concerned by this and the fact that the page has been viewed 250 times in such a short period?
Thank you for your help and suggestions
I have installed Concrete5 a few days ago. I just checked with awstat which pages of my website are most viewed and I noticed that already 250 people have been interested to look at a file installed by concrete5.
It is located in localhost/concreteinstallation/index.php/tools/required/i18n_js
Here is what you can find in it:
var ccmi18n = {
error: "Error",
deleteBlock: "Delete",
deleteBlockMsg: "The block has been removed successfully.",
addBlock: "Add Block",
addBlockNew: "Add Block",
addBlockPaste: "Paste from Scrapbook",
changeAreaCSS: "Design",
editAreaLayout: "Edit Layout",
addAreaLayout: "Add Layout",
moveLayoutUp: "Move Up",
moveLayoutDown: "Move Down",
moveLayoutAtBoundary: "This layout section can not be moved further in this direction.",
lockAreaLayout: "Lock Layout",
unlockAreaLayout: "Unlock Layout",
deleteLayout: "Delete",
deleteLayoutOptsTitle: "Delete Layout",
confirmLayoutPresetDelete: "Are you sure you want to delete this layout preset?",
setAreaPermissions: "Set Permissions",
addBlockMsg: "The block has been added successfully.",
updateBlock: "Update Block",
updateBlockMsg: "The block has been saved successfully.",
closeWindow: "Close",
editBlock: "Edit",
compareVersions: "Compare Versions",
blockAreaMenu: "Add Block",
...
Should I have to be concerned by this and the fact that the page has been viewed 250 times in such a short period?
Thank you for your help and suggestions
In either case, I wouldn't worry. It's difficult to do anything malicious through a client-side script.
index.php/tools/required/i18n_js is a javascript file which contains internationalization info for the C5 UI (translations for other languages). It gets loaded on every page when you're logged in.
So if you've been playing around with the C5 install, navigating through pages while logged in, each hit to any page would also count as a hit to i18n_js.