Contact
Site: US UK AU |

How to configure the Magento Product Importer (Magmi)

How to configure the Magento Product Importer (Magmi)

Vulnerability and Nexcess policy

Prior to the 2014 Holiday season, the Nexcess Systems Operations team scanned all Magento sites hosted on our platform and disabled the Magmi Product Importer in all system infrastructure. This action was based on an email sent by the Magento support team regarding the Magmi vulnerability, which allows an attacker to use the importer to remotely upload malicious code.

For more information regarding the Magmi vulnerability, see Magento Magmi Security Bulletin.

Using Magmi

In order to use the Magmi Product Importer safely, you must restrict public access to the importer. Password protecting the importer and limiting access to the importer by IP address are the two best solutions.

Second, rename the Magmi directory, as our team has blocked access to the Magmi directory on our servers.

For 24-hour assistance any day of the year, contact our Support Team by email or through the Client Portal.

Article Rating (No Votes)
Rate this article
  • Icon PDFExport to PDF
  • Icon MS-WordExport to MS Word
 
Attachments Attachments
There are no attachments for this article.