Forgot your username?             Forgot your password?

Admin Tools

Admin Tools is a Joomla! extension bundle which strives to enhance your site's security, make common administration tasks easier and even allow you to update your core Joomla! installation with a single click. This category contains the downloads for both Admin Tools Core (the free version) and Admin Tools Professional (the for-a-fee version with extra security features).

Download translation files directly from our CDN page

Stable 3.6.1

Maturity:
Stable
Released on:
Tuesday, 07 July 2015 04:37
Viewed:
8914 times

This is a bugfix release, addressing known issues.

Joomla! 3 only

Our software now only supports the latest stable version of Joomla! available. At the time of this writing it is 3.4.1. Using older versions is NOT recommended for security reasons.

PHP 5.3.4 or later is required

This version requires PHP 5.3.4 or later (e.g. 5.3.29 which is twenty five versions newer than PHP 5.3.4), 5.4, 5.5 or 5.6. Please note that PHP 5.3 is obsolete since August 2014 and we're going to stop supporting it without warning in future versions of our software. We'd like to remind you that Joomla! 3.x does not currently support PHP 7. Since our software runs inside Joomla! by definition our software doesn't currently run on PHP 7 either.

Note: there is no such thing as PHP 6. PHP versions jumped from 5.6 to 7.0. Why? Well, it's a long story. TL;DR: It doesn't have to make sense, just accept it.

Changelog

Bug fixes

  • [LOW] .htaccess and NginX Maker: compatibility issues with PHP 5.3 – Last version to support PHP 5.3.
  • [LOW] Option to prevent plugin reordering was not honoured
  • [LOW] The admintools-update.php script was broken
  • [MEDIUM] Third party security exception integration was not working

Miscellaneous changes

  • .htaccess Maker: Better implementation of "Disable HTTP methods TRACE and TRACK", compatible with Apache 1.3 and 2.2

Take me to the downloads for this version

Stable 3.6.0

Maturity:
Stable
Released on:
Tuesday, 23 June 2015 08:10
Viewed:
3758 times

This is a maintenance release adding new features and introducing improvements in the PHP File Scanner, .htaccess Maker, NginX Conf Maker and Database Collation features. Please read the updated documentation and regenerate your .htaccess and NginX .conf files.

Release highlights

.htaccess and NginX Conf Maker improvements. We have added nearly two dozen new protection and site optimisation options in these two features. Please read the updated documentation and regenerate your .htaccess and NginX .conf files.

Improved PHP File Scanner. The threat scores are calculated more realistically now.

Joomla! 3 only

Our software now only supports the latest stable version of Joomla! available. At the time of this writing it is 3.4.1. Using older versions is NOT recommended for security reasons.

PHP 5.3.4 or later 5.x version is required

This version requires PHP 5.3.4 or later (e.g. 5.3.29 which is twenty five versions newer than PHP 5.3.4), 5.4, 5.5 or 5.6. Please note that PHP 5.3 is obsolete since August 2014 and we're going to stop supporting it without warning in future versions of our software. We'd like to remind you that Joomla! 3.x does not currently support PHP 7. Since our software runs inside Joomla! by definition our software doesn't currently run on PHP 7 either.

Note: there is no such thing as PHP 6. PHP versions jumped from 5.6 to 7.0. Why? Well, it's a long story. TL;DR: It doesn't have to make sense, just accept it.

Changelog

Bug fixes

  • [LOW] Geographic Blocking page: select all / none not working (leftover mooTools code)
  • [LOW] Master Password page: select all / none not working (leftover mooTools code)
  • [LOW] NginX Maker: The Preview button didn't work

New features

  • .htaccess Maker & NginX Conf Maker: "Do not display in IFrame" option for HTTPS site
  • .htaccess Maker & NginX Conf Maker: "Enable CORS (Cross Origin Request Sharing)" option
  • .htaccess Maker & NginX Conf Maker: "Forbid TRACE and TRACK" option
  • .htaccess Maker & NginX Conf Maker: "Protect against clickjacking" option
  • .htaccess Maker: "Set the UTF-8 character set as the default" option
  • .htaccess Maker: Choose how to send ETags (or whether not to send them at all)
  • .htaccess Maker: Force GZip compression for mangled Accept-Encoding headers
  • .htaccess Maker: Prevent content transformation
  • .htaccess Maker: Protection against third party settings modification and .htaccess file regeneration
  • .htaccess Maker: Reduce MIME type security risks
  • .htaccess Maker: Reflected XSS prevention
  • .htaccess Maker: Remove Apache and PHP version signature
  • .htaccess Maker: Will not allow you to add php as an allowed extension for the front-end and back-end protection as that nullifies the protection!
  • .htaccess Maker: apply expiration headers also to .ogg files
  • Add UTF-8 Multibyte (e.g. Emoji) support with the Database Collation feature!
  • NginX Maker: Allows you to set up more complex fastcgi pass-throughs
  • NginX Maker: Enable or disable ETags
  • NginX Maker: Prevent content transformation
  • NginX Maker: Protection against third party settings modification and nginx.conf file regeneration
  • NginX Maker: Reduce MIME type security risks
  • NginX Maker: Reflected XSS prevention
  • NginX Maker: Will not allow you to add php as an allowed extension for the front-end and back-end protection as that nullifies the protection!
  • You can now disable automatically reordering the Admin Tools system plugin
  • [HIGH] NginX Maker: Front-end protection could lead to an infinite redirection loop with SEF URLs on multi-language sites
  • [LOW] NginX Maker: The "No directory indexes" option could cause problems with SEF URLs on multi-language sites

Miscellaneous changes

  • The PHP File Scanner was updated. The threat scores are now more realistically calculated.

Take me to the downloads for this version

Stable 3.5.1

Maturity:
Stable
Released on:
Tuesday, 31 March 2015 19:00
Viewed:
14986 times

This is a bugfix release, addressing known issues.

PHP 5.3.4 or later is required

This version requires PHP 5.3.4 or later, due to show-stopper bugs in earlier versions of PHP 5.3. Important note on reading PHP versions: PHP 5.3.20 is newer than 5.3.10 which is newer than 5.3.4. Moreover, PHP 5.4.0 is newer than PHP 5.3.4. Joomla! 3.3 and later already requires PHP 5.3.10 or later. Also keep in mind that the entire PHP 5.3 series is end of life since August 2014 and MUST NOT be used on live sites any more for performance and security reasons.

Compatibility with Joomla! versions

This release requires any version in the Joomla! 3.3.x or 3.4.x family. It is NOT compatible with older versions of Joomla! including all 1.x, 2.x, 3.0.x, 3.1.x and 3.2.x releases. In any case, if your server doesn't meet the minimum requirements our pre-installation check asks Joomla! to cancel the installation and tell you exactly why it cannot be installed (minimum PHP or Joomla! version not satisfied).

Reading Joomla! versions: Joomla! 2.5.20 is newer than 2.5.10 which is newer than 2.5.6. Moreover, Joomla! 3.4.0 is newer than 3.3.6 which is newer than 2.5.28. In other words, you need to separately compare each one of the the three numbers separated by dots. These numbers are NOT decimals and trailing zeroes DO matter, i.e. 1.10 (pronounced "one dot ten", not one dot one oh) is larger than 1.2.

Changelog

Miscellaneous changes

  • Minor, mostly cosmetic, changes in the Joomla Update Check plugin
  • Restored the Custom administrator directory feature. This feature is provided WITHOUT ANY SUPPORT WHATSOEVER.

Take me to the downloads for this version

Stable 3.4.4

Maturity:
Stable
Released on:
Monday, 16 February 2015 04:18
Viewed:
12293 times

This is a bugfix release of Admin Tools.

This version requires PHP 5.3.4+, 5.4 or 5.5 and Joomla! 2.5.6+, 3.2.1+ or 3.3. Please note that Joomla! 3.0/3.1 is no longer supported.

Release notes

This version of Admin Tools fixes minor issues with Joomla! 2.5. Please remember that Admin Tools 3.4.x is the last release branch to support Joomla! 2.5. The next version branch of Admin Tools (3.5.x) will only support Joomla! 3.2 and later.

Changelog

Bug fixes

  • [MEDIUM] Custom administrator directory: some servers misbehave when asked to access /administrator instead of /administrator/index.php
  • [MEDIUM] Two Factor Authentication was not working

Take me to the downloads for this version

Stable 3.3.1

Maturity:
Stable
Released on:
Friday, 17 October 2014 04:06
Viewed:
15004 times

This is a bugfix release of Admin Tools.

This version requires PHP 5.3.4+, 5.4 or 5.5 and Joomla! 2.5.6+, 3.2.1+ or 3.3. Please note that Joomla! 3.0/3.1 is no longer supported.

Release notes

This version of Admin Tools fixes two issues with Joomla! 2.5 and adds an installation self-check feature.

Version 3.3 highlights

A better, more stable way to install and update the database tables. Previous versions were using the database installation and update code in Joomla! itself which was notoriously buggy and resulted in erratic behaviour. In this release we use our own database installer / updater for the base tables of our component. Unfortunately, due to the rules in the Joomla! Extensions Directory, we still have to rely on Joomla!'s code for the administrator menu item creation which may cause no menu item appearing under components on very few sites. We are aware of it, we know how to fix it, but we are not allowed to on penalty of being permanently banned from the directory!

Show the update information in the control panel page. In the previous version we introduced the integration with Joomla!'s own extensions updater. Unfortunately you could no longer see the update information in the component's control panel page. This version fixes it and allows you to force-reload the update information if you need to as Joomla! no longer lets you do that in the latest 3.x versions (for no good reason, really).

Some features not shown on servers which don't support them to prevent confusion. Namely the "Emergency off-line", ".htaccess Maker" and "Password-protect administrator" are not shown on servers which are known to not support .htaccess files. Also the "Permissions Configuration" and "Fix Permissions" features are not shown on Windows servers as the notion of permissions does not exist there. Please remember that when Admin Tools is not absolutely sure it will display the feature anyway!

NginX Configuration Maker brings the power of the .htaccess Maker to the high-performance NginX server! The generated configuration can be added manually to your nginx.conf file or a file can be written in your web root to be included by NginX (note: only the first option is considered secure).

Option to reset Joomla!'s Two Factor Authentication when a user resets their password. Sometimes users who have enabled the Two Factor Authentication (TFA) features on Joomla! 3.2 and later lose their device. Normally they have to go through a site administrator to have them manually deactivate the TFA. With this option the TFA is disabled following a successful password reset of the user account. It's less secure but more convenient.

ON POPULAR REQUEST: Added template emails for security exceptions notifications. You can now have a different email sent out depending on the security exception type. You can also define rate limits for emails so that your inbox doesn't get flooded when you're under attack by a botnet that Admin Tools is successfully coping with.

ON POPULAR REQUEST: Repeated auto-bans can lead to permanent ban. If an IP is constantly triggering the automatic IP ban feature it can get permanently banned, i.e. added to the IP Blacklist. You can configure if and when this will happen.

Forbid HTTP TRACE and TRACK methods (XST protection). One more protection added to .htaccess and NginX Configuration Maker, this time preventing Cross Site Tracking attacks which tend to leave no traces in your server access logs.

Away schedule. Block access to the administrator section of your site between certain times of the day. Useful if you are the sole administrator of a site and don't want hackers to have a chance of logging in while you are fast asleep.

ON POPULAR REQUEST: Admin cloaking. Admin Tools can cloak your administrator URL. Going directly to http://www.example.com/administrator will throw you back to the site's main page (and a security exception will be logged). Instead, going to http://www.example.com/mysecret (where mysecret is configurable) will allow you to see the administrator login page.

Changelog

Bug fixes

  • [HIGH] Missing files in core package leading to incorrect post-setup page under Joomla 2.5
  • [LOW] Database repair CLI script is not installed
  • [MEDIUM] Logging out of Joomla! 2.5 when using secret URL parameter may raise security exception

New features

  • Self-check the installation. If files are missing or have been tampered with you will be notified about it.

Take me to the downloads for this version

Stable 3.1.1

Maturity:
Stable
Released on:
Friday, 12 September 2014 02:23
Viewed:
12847 times

This is a regular minor release, solving minor issues detected in the previous stable release and adding new minor features.

Release highlights

Added feature to purge PHP Scanner's scanned files cache. This will reduce the database space being used and allow you to start the next scan from a blank state.

Added CLI script to check and repair database tables. It's the same feature as the one provided by the Admin Tools system plugin but you can now use it through a CRON job.

You can now export and import Admin Tools settings. On popular request we added the ability to export and import the most important Admin Tools settings. Please note that after importing Admin Tools settings on a new site you are advised to review at the very least the .htaccess Maker settings to ensure that they reflect the new site's domain name and directory.

Added option to block user registration from selected email addresses. Certain email domain names, mostly free email services, are regularly abused for spam registrations. If you feel so inclined you can now block user registrations from these email domains.

Help us get more insight. Our software includes code to anonymously report your PHP, MySQL, Joomla! and Akeeba Backup version. This information cannot be linked to a particular site or person. It will help us get a glimpse at which versions are in use in real world servers, in what relative percentage, and let us to better plan our deprecation strategy. If you don't wish to take part to this anonymous data collection you can opt out from the component's Options page at any time.

PHP 5.3, 5.4, 5.5 or 5.6 is required

This version requires PHP 5.3, 5.4, 5.5 or 5.6. The rationale behind this is explained in our statement of mid-February 2013. It won't install on hosts running PHP 5.2 or earlier. PHP 5.3.4 or later is required, due to show-stopper bugs in earlier versions of PHP 5.3. Important note on reading PHP versions: PHP 5.3.20 is newer than 5.3.10 which is newer than 5.3.4. Moreover, PHP 5.4.0 is newer than PHP 5.3.4.

Due to the necessary Joomla! API changes found only in Joomla! 2.5.6 or later, this version will not install on Joomla! 2.5.5 or earlier versions. In any case, if your server doesn't meet the minimum requirements it will tell you exactly why it cannot be installed (minimum PHP or Joomla! version not satisfied).

Joomla! 2.5, 3.2, 3.3, 3.4 are supported

This version of our software can be installed on Joomla! 2.5.6 or any later 2.5.x release, as well as any 3.2.x, 3.3.x or 3.4.x release. It is not compatible with Joomla! 3.0 or 3.1. These versions of Joomla! are old and vulnerable. If you are using them please upgrade to the latest Joomla! 3 release available from Joomla.org.

Important note regarding Joomla! updates

Admin Tools 2.5.7 and later no longer includes the Joomla! Updater feature and the Joomla! update icon notification plugin. As the core Joomla! Update component and icon notification plugin, written by our team and donated to the Joomla! project, have a very slow release cycle we decided to release an improved Joomla! update component called Akeeba CMS Update. It is available free of charge. Even though it's marked as beta we consider it stable enough to use it on production sites. There is a known issue: we cannot work around Joomla!'s post-installation script which is bound to fail on low-end shared hosts. Unfortunately this is a problem with Joomla! itself and it prevents us from providing a smooth update experience to all of our users. Since we have no control over that piece of Joomla! code which is necessary to perform updates we ask you to go to Extensions Manager, Database and click on the Fix button after the upgrade is complete to make sure that your site is fully upgraded. Also note that third party extensions, including templates, might not be compatible with newer versions of Joomla!. Always check with your extensions developers before upgrading to a new minor (e.g. 3.3 to 3.4) or major (e.g. 2.x to 3.x) version of Joomla!.

Changelog

Critical bugs and important changes

  • PHP File Change Scanner is broken

Take me to the downloads for this version

Stable 2.4.6

Maturity:
Stable
Released on:
Monday, 29 September 2014 19:00
Viewed:
3339 times

This is a security release addressing a high impact, but very unlikely, security issue with the Joomla! Update feature. All users are advised to upgrade. For more information please consult our news article.

Please note that this old release of Admin Tools is end of life and no longer supported. This security fix is provided as a courtesy and does not imply that we will provide any kind of support for it.

This is a security release addressing a high impact, but very unlikely, security issue with the Joomla! Update feature. All users are advised to upgrade. For more information please consult our news article.

Please note that this old release of Admin Tools is end of life and no longer supported. This security fix is provided as a courtesy and does not imply that we will provide any kind of support for it.

Take me to the downloads for this version

Alpha 2.2.a5

Maturity:
Alpha
Released on:
Monday, 29 September 2014 19:00
Viewed:
1759 times

This is a security release addressing a high impact, but very unlikely, security issue with the Joomla! Update feature. All users are advised to upgrade. For more information please consult our news article.

Please note that this old release of Admin Tools is end of life and no longer supported. This security fix is provided as a courtesy and does not imply that we will provide any kind of support for it.

This is a security release addressing a high impact, but very unlikely, security issue with the Joomla! Update feature. All users are advised to upgrade. For more information please consult our news article.

Please note that this old release of Admin Tools is end of life and no longer supported. This security fix is provided as a courtesy and does not imply that we will provide any kind of support for it.

Take me to the downloads for this version

Stable 2.2.12

Maturity:
Stable
Released on:
Monday, 29 September 2014 19:00
Viewed:
3863 times

This is a security release addressing a high impact, but very unlikely, security issue with the Joomla! Update feature. All users are advised to upgrade. For more information please consult our news article.

Please note that this old release of Admin Tools is end of life and no longer supported. This security fix is provided as a courtesy and does not imply that we will provide any kind of support for it.

This is a security release addressing a high impact, but very unlikely, security issue with the Joomla! Update feature. All users are advised to upgrade. For more information please consult our news article.

Please note that this old release of Admin Tools is end of life and no longer supported. This security fix is provided as a courtesy and does not imply that we will provide any kind of support for it.

Take me to the downloads for this version

Stable 2.1.16

Maturity:
Stable
Released on:
Monday, 29 September 2014 19:00
Viewed:
3125 times

This is a security release addressing a high impact, but very unlikely, security issue with the Joomla! Update feature. All users are advised to upgrade. For more information please consult our news article.

Please note that this old release of Admin Tools is end of life and no longer supported. This security fix is provided as a courtesy and does not imply that we will provide any kind of support for it.

This is a security release addressing a high impact, but very unlikely, security issue with the Joomla! Update feature. All users are advised to upgrade. For more information please consult our news article.

Please note that this old release of Admin Tools is end of life and no longer supported. This security fix is provided as a courtesy and does not imply that we will provide any kind of support for it.

Take me to the downloads for this version