From garyamort at gmail.com Tue Nov 5 12:45:22 2013 From: garyamort at gmail.com (Gary A. Mort) Date: Tue, 05 Nov 2013 12:45:22 -0500 Subject: [joomla] November meeting Message-ID: <52792EB2.1000704@gmail.com> Trying to plan out my schedule in advance, get back into doing something with my life, etc. Is there a meeting in November? I see one is scheduled for the 21st. If so, anyone want to meet earlier around there and discuss using git/github with existing joomla websites? I'd love to bounce some ideas off others and learn how others use it. From scott at wolpow.com Tue Nov 5 13:33:13 2013 From: scott at wolpow.com (Scott Wolpow) Date: Tue, 05 Nov 2013 13:33:13 -0500 Subject: [joomla] November meeting In-Reply-To: <52792EB2.1000704@gmail.com> References: <52792EB2.1000704@gmail.com> Message-ID: <527939E9.3060108@wolpow.com> Using GIt and my own hub, doing fun things with it. We have automated the process sop when you push to the repo it gets pushed to the site and the db autoloads and updates. SW On 11/5/2013 12:45 PM, Gary A. Mort wrote: > Trying to plan out my schedule in advance, get back into doing > something with my life, etc. > > Is there a meeting in November? I see one is scheduled for the 21st. > > If so, anyone want to meet earlier around there and discuss using > git/github with existing joomla websites? I'd love to bounce some > ideas off others and learn how others use it. > _______________________________________________ > New York PHP SIG: Joomla! Mailing List > http://lists.nyphp.org/mailman/listinfo/joomla > > NYPHPCon 2006 Presentations Online > http://www.nyphpcon.com > > Show Your Participation in New York PHP > http://www.nyphp.org/show_participation.php > -- Scott Wolpow 718 275 7765 ------------------- From mkonop at gmail.com Thu Nov 7 20:04:58 2013 From: mkonop at gmail.com (Marian Konop) Date: Thu, 7 Nov 2013 20:04:58 -0500 Subject: [joomla] Joomla 3.2 Summary by Joomlart Message-ID: Here is a link to a good summary of the features of Joomla 3.2 by our friends at Joomlart. Many of you may remember how much fun Hung Dinh was at JoomlaDay NYC. http://www.joomlart.com/blog/news-updates/joomla-3-2-released-10-new-features-it-brings -- *Marian Konop* Gotham Websites We think SMALL . . . Business *www.gothamwebsites.com * -------------- next part -------------- An HTML attachment was scrubbed... URL: From ssours at wellesley.edu Mon Nov 18 09:23:13 2013 From: ssours at wellesley.edu (Sue Sours) Date: Mon, 18 Nov 2013 09:23:13 -0500 Subject: [joomla] NYC client needs help with content updates & maintenance Message-ID: Hi all, I'm looking for someone to take on maintenance and content updates for a client. Peter is a great guy (and family friend) whose site I did some time ago and I just do not have the time to maintain it any more. Please contact: Peter Sherman Advanced Home Environments 445 Fifth Avenue Pelham, NY 10803 Tel 914-738-8200 Fax 914-738-8201 Email psherman at advancedhe.com Website www.advancedhe.com Thanks! Sue Sours -- Sue Sours WCW Information & Technology Systems Manager Wellesley Centers for Women www.wcwonline.org e-mail: ssours at wellesley.edu phone: 781-283-2560 Wellesley College 106 Central Street Wellesley, MA 02481 -------------- next part -------------- An HTML attachment was scrubbed... URL: From shalomcohen at hotmail.com Mon Nov 18 09:49:13 2013 From: shalomcohen at hotmail.com (Shalom Cohen) Date: Mon, 18 Nov 2013 09:49:13 -0500 Subject: [joomla] NYC client needs help with content updates & maintenance In-Reply-To: References: Message-ID: Good morning Sue, Can you please provide a little bit of information as to what type of maintenance will this site require? Regards,Shalom CohenMobile: (516)603-8007 From: ssours at wellesley.edu Date: Mon, 18 Nov 2013 09:23:13 -0500 To: joomla at lists.nyphp.org Subject: [joomla] NYC client needs help with content updates & maintenance Hi all, I'm looking for someone to take on maintenance and content updates for a client. Peter is a great guy (and family friend) whose site I did some time ago and I just do not have the time to maintain it any more. Please contact: Peter Sherman Advanced Home Environments 445 Fifth Avenue Pelham, NY 10803 Tel 914-738-8200 Fax 914-738-8201 Email psherman at advancedhe.com Website www.advancedhe.com Thanks! Sue Sours -- Sue Sours WCW Information & Technology Systems Manager Wellesley Centers for Women www.wcwonline.org e-mail: ssours at wellesley.edu phone: 781-283-2560 Wellesley College 106 Central Street Wellesley, MA 02481 _______________________________________________ New York PHP SIG: Joomla! Mailing List http://lists.nyphp.org/mailman/listinfo/joomla NYPHPCon 2006 Presentations Online http://www.nyphpcon.com Show Your Participation in New York PHP http://www.nyphp.org/show_participation.php -------------- next part -------------- An HTML attachment was scrubbed... URL: From snewfeld at zebrasystems.com Tue Nov 19 17:59:19 2013 From: snewfeld at zebrasystems.com (Stewart Newfeld) Date: Tue, 19 Nov 2013 17:59:19 -0500 Subject: [joomla] NYC Joomla User Group Meeting Thursday November 21, 2013 Message-ID: <00fa01cee57a$fb0c9640$f125c2c0$@com> The nex regular meeting of the NYC Joomla Users Group will be this Thursday, November 21, 2013 Location: Touro College ( ... more about Touro College ) Graduate School of Business 65 Broadway, Room 224 (map ) between Rector & Exchange Place New York, NY 10006 Chairperson: Stewart Newfeld 6:00 - 6:15 - Introductions, treasurer's report on October's successful Joomlacamp, nominations for the 2014 board, and miscellaneous Business. The election for the board will be held at the December 19th meeting. 6:15 - 8:00 - PRESENTATION 1: by Gary A. Mort, expert PHP and Joomla Developer. Extending, enhancing, and using Joomla Forms for user input for validation, security, etc. PRESENTATION 2: Gary will also talk about Using Git & Github for Joomla Website Development/Component Development, and Using the PHPStorm IDE with Joomla Development A note from Stewart Newfeld: Even if you are not a PHP programmer, Gary is very good at putting things in context so that everyone should learn more about Joomla from his presentations. 8:00-8:30 Lightening Round Question and Answers, Networking. Stewart Newfeld Zebra Systems, Inc. Computer Network & Website Support 131 Joralemon Street, Apt. 52 Brooklyn, NY 11201 www.zebrasystems.com 212.675.8414 -------------- next part -------------- An HTML attachment was scrubbed... URL: From garyamort at gmail.com Wed Nov 20 13:30:31 2013 From: garyamort at gmail.com (Gary A. Mort) Date: Wed, 20 Nov 2013 13:30:31 -0500 Subject: [joomla] Presentations in the "greater" NYC region Message-ID: <528CFFC7.7090904@gmail.com> I have a good bit of time available these days and am happy to meet to go over things like this. Things like this being workshop style presentations where I can put together a set of notes on how to do something, and then go through them in a presentation. That way when things are too detailed for the group, they can be skipped over, and if there are questions in a particular area it can be gone over in depth. I live in the middle of Dutchess County, NY and to me about 2 hours is the farthest I really want to travel for a one day event[IE it's going to take me under 4 hours round trip so that I will not be getting home too late] - so that puts an upper northern limit on it of Albany, NY - Southward limit of NYC, but still covers a good bit of CT, NJ, and MA: http://www.freemaptools.com/radius-around-point.htm?clat=41.77643254375405&clng=-73.7486457824707&r=90&lc=FFFFFF&lw=1&fc=00FF00 On the downside, I'm not in a position financially to pay for the travel and such, so that would have to be reimbursed. [I know NYC generally runs $50 to get there and back again....so I would assume the same for anything in my "nearby" range. -Gary -------------- next part -------------- An HTML attachment was scrubbed... URL: From garyamort at gmail.com Thu Nov 21 16:29:21 2013 From: garyamort at gmail.com (Gary A Mort) Date: Thu, 21 Nov 2013 16:29:21 -0500 Subject: [joomla] NYC Joomla User Group Meeting Thursday November 21, 2013 In-Reply-To: <00fa01cee57a$fb0c9640$f125c2c0$@com> References: <00fa01cee57a$fb0c9640$f125c2c0$@com> Message-ID: <528E7B31.7090805@gmail.com> Due to an incredibly stupid oversight on my part - I am not able to make it down to the city this evening. I am available for a web conference though where I can go through the presentations. On 11/19/2013 05:59 PM, Stewart Newfeld wrote: > > *The nex regular meeting of the NYC Joomla Users Group will be ** > *this Thursday, November 21, 2013** > > *Location:** > *Touro College ( ... more about Touro College > ) > Graduate School of Business* > *65 Broadway, Room 224 (map ) > between Rector & Exchange Place > New York, NY 10006 > > *Chairperson: *Stewart Newfeld > > 6:00 - 6:15 - Introductions, treasurer's report on October's > successful Joomlacamp, > nominations for the 2014 board, and miscellaneous Business. The > election for the board will be held at the December 19th meeting. > > 6:15 - 8:00 - PRESENTATION 1: by Gary A. Mort, expert PHP and Joomla > Developer. > Extending, enhancing, and using Joomla Forms for user input for > validation, security, etc. > > PRESENTATION 2: Gary will also talk about Using Git & Github for > Joomla Website Development/Component Development, and Using the > PHPStorm IDE with Joomla Development > > A note from Stewart Newfeld: Even if you are not a PHP programmer, > Gary is very good at putting things in context so that everyone should > learn more about Joomla from his presentations. > > > 8:00-8:30 Lightening Round Question and Answers, Networking. > > Stewart Newfeld > > Zebra Systems, Inc. > > Computer Network & Website Support > > 131 Joralemon Street, Apt. 52 > > Brooklyn, NY 11201 > > www.zebrasystems.com > > 212.675.8414 > > > > _______________________________________________ > New York PHP SIG: Joomla! Mailing List > http://lists.nyphp.org/mailman/listinfo/joomla > > NYPHPCon 2006 Presentations Online > http://www.nyphpcon.com > > Show Your Participation in New York PHP > http://www.nyphp.org/show_participation.php -------------- next part -------------- An HTML attachment was scrubbed... URL: From rytech123 at gmail.com Thu Nov 21 19:29:44 2013 From: rytech123 at gmail.com (Laura Gordon) Date: Thu, 21 Nov 2013 19:29:44 -0500 Subject: [joomla] Joomla Users group NEW JERSEY, next meeting 11/25 Message-ID: Hi all, Just a reminder that our next JoomlaUsersNJ.com (new Jersey) meeting is: Monday, 11/25 Time: 7pm Union Township Chamber of Commerce 355 Chestnut Street, 2nd Floor Union, NJ 07083 Let us know you are coming by visiting our website and signing up, or login to our meetup group! joomlausersnj.com http://www.meetup.com/Joomla-Users-Group-of-New-Jersey/ Agenda: Announcements Marc Fragale: LESS vs CSS or Beginner Breakout How Do I... Show and Tell The (IN)FAMOUS Lightening Round Networking See you monday! -- Laura & Marian -- Trainer with www.lynda.com Trainer for www.JoomlaTraining.com Member www.JoomlaNYC.org www.RytechSites.com Dynamic Websites for your company! -------------- next part -------------- An HTML attachment was scrubbed... URL: From marian at gothamwebsites.com Fri Nov 22 10:41:56 2013 From: marian at gothamwebsites.com (Marian @GothamWebsites) Date: Fri, 22 Nov 2013 10:41:56 -0500 Subject: [joomla] Next Joomla Users NEW JERSEY Meeting Message-ID: Next Meeting Monday, November 25th at 7pm - Laura Gordon demonstrates moving/installing a site with Akeeba - Marc Fragale: LESS vs CSS - or Beginner Breakout - How Do I... - Show and Tell - The (IN)FAMOUS Lightening Round - Networking Meeting Location Union Township Chamber of Commerce 355 Chestnut Street, 2nd Floor Union, NJ 07083 [image: Inline image 1] http://www.meetup.com/Joomla-Users-Group-of-New-Jersey/ -- *Marian Konop* Gotham Websites We think SMALL . . . Business *www.gothamwebsites.com * -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: meetup.png Type: image/png Size: 1749 bytes Desc: not available URL: From marian at gothamwebsites.com Sun Nov 24 19:21:10 2013 From: marian at gothamwebsites.com (Marian @GothamWebsites) Date: Sun, 24 Nov 2013 19:21:10 -0500 Subject: [joomla] Business Cards for meeting tomorrow night. Message-ID: Please bring a stack of your business cards to exchange at tomorrow's Joomla Users New Jersey meeting. see the website for details: http://joomlausersnj.org/ -- *Marian Konop* Gotham Websites We think SMALL . . . Business *www.gothamwebsites.com * -------------- next part -------------- An HTML attachment was scrubbed... URL: From garyamort at gmail.com Mon Nov 25 08:39:03 2013 From: garyamort at gmail.com (Gary A. Mort) Date: Mon, 25 Nov 2013 08:39:03 -0500 Subject: [joomla] SSL virtual hosting Message-ID: <529352F7.3090505@gmail.com> I hadn't looked at how SSL works on web servers for a number of years. The last time I worked with SSL the common rule was that you had to have a distinct IP address for every domain name that you wanted to use SSL for[so you could have an SSL certificate for each different domain] Heck, even the Apache Wiki still states it in some places: http://wiki.apache.org/httpd/NameBasedSSLVHosts However, when poking around I ran across references to SNI and using multiple certificates for the same IP Address. http://www.ietf.org/rfc/rfc4366.txt This dates all the way back to 2006, so it has been around for quite a while! Browser support for it goes back a good way as well: http://en.wikipedia.org/wiki/Server_Name_Indication#Browsers_with_support_for_TLS_server_name_indication.5B6.5D Interestingly, for Internet Explorer it isn't the browser version which matters, but the operating system, IE uses the operating system to perform SSL encryption. This means that it won't work in IE on Windows XP or any earlier windows operating system. It will work for Internet Explorer on Windows Vista[released in 2007] and any later windows operating system. As such, it's a fair to say that SSL for virtual hosts will work for almost all users these days - and there is no reason not to enforce the use of SSL for the Joomla Admin section as well as make sure that all your admin users, at the very least, use SSL when they log on to your websites. This may be old news to everyone here, but since it was new to me I figured I'd pass it on. -------------- next part -------------- An HTML attachment was scrubbed... URL: From info at waynorth.com Mon Nov 25 10:36:52 2013 From: info at waynorth.com (Mark Holberg) Date: Mon, 25 Nov 2013 10:36:52 -0500 Subject: [joomla] SSL virtual hosting In-Reply-To: <529352F7.3090505@gmail.com> References: <529352F7.3090505@gmail.com> Message-ID: <52936E94.5000206@waynorth.com> Gary, Do you recommend an SSL be purchsed for every site? Or would self-signed certificates be acceptable? If there is an SSL covering the entire server, accessing the Joomla login page via the virtual directory can be done securely. That is, if you have not canonicalized the site's default URL using .htaccess Mark On 11/25/2013 8:39 AM, Gary A. Mort wrote: > I hadn't looked at how SSL works on web servers for a number of > years. The last time I worked with SSL the common rule was that you > had to have a distinct IP address for every domain name that you > wanted to use SSL for[so you could have an SSL certificate for each > different domain] > > Heck, even the Apache Wiki still states it in some places: > http://wiki.apache.org/httpd/NameBasedSSLVHosts > > However, when poking around I ran across references to SNI and using > multiple certificates for the same IP Address. > http://www.ietf.org/rfc/rfc4366.txt This dates all the way back to > 2006, so it has been around for quite a while! > > Browser support for it goes back a good way as well: > http://en.wikipedia.org/wiki/Server_Name_Indication#Browsers_with_support_for_TLS_server_name_indication.5B6.5D > > Interestingly, for Internet Explorer it isn't the browser version > which matters, but the operating system, IE uses the operating system > to perform SSL encryption. This means that it won't work in IE on > Windows XP or any earlier windows operating system. It will work for > Internet Explorer on Windows Vista[released in 2007] and any later > windows operating system. > > As such, it's a fair to say that SSL for virtual hosts will work for > almost all users these days - and there is no reason not to enforce > the use of SSL for the Joomla Admin section as well as make sure that > all your admin users, at the very least, use SSL when they log on to > your websites. > > This may be old news to everyone here, but since it was new to me I > figured I'd pass it on. > > > _______________________________________________ > New York PHP SIG: Joomla! Mailing List > http://lists.nyphp.org/mailman/listinfo/joomla > > NYPHPCon 2006 Presentations Online > http://www.nyphpcon.com > > Show Your Participation in New York PHP > http://www.nyphp.org/show_participation.php -------------- next part -------------- An HTML attachment was scrubbed... URL: From scott at wolpow.com Mon Nov 25 10:55:21 2013 From: scott at wolpow.com (Scott Wolpow) Date: Mon, 25 Nov 2013 10:55:21 -0500 Subject: [joomla] SSL virtual hosting In-Reply-To: <52936E94.5000206@waynorth.com> References: <529352F7.3090505@gmail.com> <52936E94.5000206@waynorth.com> Message-ID: <529372E9.1090508@wolpow.com> For this purpose a self signed could work. But if you have email issues with Outlook or with Merchant Services you need to list with an authority site. SW On 11/25/2013 10:36 AM, Mark Holberg wrote: > Gary, > > Do you recommend an SSL be purchsed for every site? Or would > self-signed certificates be acceptable? > > If there is an SSL covering the entire server, accessing the Joomla > login page via the virtual directory can be done securely. That is, > if you have not canonicalized the site's default URL using .htaccess > > Mark > > On 11/25/2013 8:39 AM, Gary A. Mort wrote: >> I hadn't looked at how SSL works on web servers for a number of >> years. The last time I worked with SSL the common rule was that you >> had to have a distinct IP address for every domain name that you >> wanted to use SSL for[so you could have an SSL certificate for each >> different domain] >> >> Heck, even the Apache Wiki still states it in some places: >> http://wiki.apache.org/httpd/NameBasedSSLVHosts >> >> However, when poking around I ran across references to SNI and using >> multiple certificates for the same IP Address. >> http://www.ietf.org/rfc/rfc4366.txt This dates all the way back to >> 2006, so it has been around for quite a while! >> >> Browser support for it goes back a good way as well: >> http://en.wikipedia.org/wiki/Server_Name_Indication#Browsers_with_support_for_TLS_server_name_indication.5B6.5D >> >> Interestingly, for Internet Explorer it isn't the browser version >> which matters, but the operating system, IE uses the operating system >> to perform SSL encryption. This means that it won't work in IE on >> Windows XP or any earlier windows operating system. It will work for >> Internet Explorer on Windows Vista[released in 2007] and any later >> windows operating system. >> >> As such, it's a fair to say that SSL for virtual hosts will work for >> almost all users these days - and there is no reason not to enforce >> the use of SSL for the Joomla Admin section as well as make sure that >> all your admin users, at the very least, use SSL when they log on to >> your websites. >> >> This may be old news to everyone here, but since it was new to me I >> figured I'd pass it on. >> >> >> _______________________________________________ >> New York PHP SIG: Joomla! Mailing List >> http://lists.nyphp.org/mailman/listinfo/joomla >> >> NYPHPCon 2006 Presentations Online >> http://www.nyphpcon.com >> >> Show Your Participation in New York PHP >> http://www.nyphp.org/show_participation.php > > > > _______________________________________________ > New York PHP SIG: Joomla! Mailing List > http://lists.nyphp.org/mailman/listinfo/joomla > > NYPHPCon 2006 Presentations Online > http://www.nyphpcon.com > > Show Your Participation in New York PHP > http://www.nyphp.org/show_participation.php -- Scott Wolpow 718 275 7765 ------------------- -------------- next part -------------- An HTML attachment was scrubbed... URL: From garyamort at gmail.com Mon Nov 25 11:18:23 2013 From: garyamort at gmail.com (Gary A. Mort) Date: Mon, 25 Nov 2013 11:18:23 -0500 Subject: [joomla] SSL virtual hosting In-Reply-To: <52936E94.5000206@waynorth.com> References: <529352F7.3090505@gmail.com> <52936E94.5000206@waynorth.com> Message-ID: <5293784F.4070105@gmail.com> On 11/25/2013 10:36 AM, Mark Holberg wrote: > Gary, > > Do you recommend an SSL be purchsed for every site? Or would > self-signed certificates be acceptable? > I'm perfectly happy using self-signed certificates. Or more accurately, I create a self signed CA for my own usage and use it to sign all the certificates I use on my sites. It depends entirely on your use case. I use SSL to protect the admin section of my Joomla sites and for any site management id's I use a simple system plugin so that all users in that group get redirected to the SSL site. My personal concern is that I use my laptop everywhere I go. I logon to check my e-mail, make changes to website configurations, etc. Ever since Firesheep was released back in 2010, http://codebutler.com/firesheep/ it has gone from 'possible but requires some work' for anyone else on the public wifi to 'steal' your logon session to 'ridiculously easy'. Personally I found that a good thing - it's not like firesheep was some new hacking method, it was just a tool that made it simple for anyone. Since I'm using SSL solely to prevent theft of user credentials on wifi networks - I am perfectly content to tell people "you have to add an exception to use SSL, and all your admins need to do so". If I was building an ecommerce site for someone else....well, I'd still recommend self signed certificates. I find the "protection" offered by the various SSL authorities to be a complete joke[they don't seem to really do anything to actually verify identity] - and most small ecommerce sites end up having their certificate expire and not get renewed anyway - without having an appreciable impact on their sales. So why bother paying a lot of money for an SSL certificate? But I would at least give the client a heads up that not using a purchased certificate /might/ affect their conversion rates. They only need to use the SSL cert for the checkout process, everywhere else they can use straight http. With SSL your really at the mercy of the creator of your web browser anyway. Google could, for example, provide a false SSL certificate for /any/ website which would appear valid. The same can be said for Microsoft, Opera, and Mozilla. [And case in point, Nokia actually DOES do this. In order to allow them to cache and compress data from websites being sent to their customers browsers on their cell phones - Nokia used their root CA to create fake SSL certificates for https sites. See https://www.grc.com/fingerprints.htm for fun details] -------------- next part -------------- An HTML attachment was scrubbed... URL: From garyamort at gmail.com Mon Nov 25 12:15:29 2013 From: garyamort at gmail.com (Gary A. Mort) Date: Mon, 25 Nov 2013 12:15:29 -0500 Subject: [joomla] The SSL Certificate Scam Message-ID: <529385B1.6010202@gmail.com> Warning, this a a length rant/vent on the state of SSL certificates as used on websites today. https://plus.google.com/117506461184749864074/posts/PqHMSjsY5hp The summary is: I don't feel that purchasing SSL Certificates from "Trusted Third Parties" as defined by Google, Microsoft, and Mozilla is currently worthwhile. If your using them for security, set up your own internal CA with a couple of roots and issue certs for your own usage. It's more secure because then YOU are the one who decided to trust the CA. Moreover, it is more secure because YOU can set much shorter expiration[why wait a whole year? Expire it in a month and generate a new one!] so if a cert is stolen it will expire soon - and YOU can revoke certificates that are being used fraudulently. The only benefit to purchasing an SSL Certificate is marketing. There are a few people who will choose not to purchase a product if the SSL Certificate doesn't "look right". However, considering the large number of active e-commerce websites taking orders today using expired certificates - I think the number of sales lost is minimal. I do see a purpose to trusted third parties - it is just the current system which is flawed.