How to configure the Magento Product Importer (Magmi)

How to configure the Magento Product Importer (Magmi)

Vulnerability and Nexcess policy

Prior to the 2014 Holiday season, our Systems Operations team scanned all Magento sites hosted on our platform and disabled the Magmi Product Importer in all system infrastructure. This action was based on an email sent by the Magento support team regarding the Magmi vulnerability, which allows an attacker to use the importer to remotely upload malicious code.

For more information regarding the Magmi vulnerability, see Magento Magmi Security Bulletin.

Using Magmi

In order to use the Magmi Product Importer safely, you must restrict public access to the importer. Password protecting the importer and limiting access to the importer by IP address are the two best solutions.

Second, rename the Magmi directory, as our team has blocked access to the Magmi directory on our servers.

For 24-hour assistance any day of the year, contact our Support Team by email or through the Client Portal.

Article Rating (No Votes)
Rate this article
  • Icon PDFExport to PDF
  • Icon MS-WordExport to MS Word
 
Attachments Attachments
There are no attachments for this article.
Related Articles RSS Feed
What is Magento?
Added on Tue, Jan 29, 2019
How to install Magento CE v1.8 and later
Added on Thu, Mar 6, 2014
How to perform Magento database maintenance
Added on Wed, Jan 30, 2019
How to set up outgoing SMTP email for Magento
Added on Thu, Jul 5, 2018
How to improve Magento maintenance mode
Added on Wed, Jan 30, 2019
How to set the return path email in Magento 1.x
Added on Thu, Oct 30, 2014
How to conserve disk space in Magento
Added on Wed, Jan 30, 2019
How to change your Magento 1.x admin password
Added on Tue, Jan 29, 2019
How to improve the security of your Magento store
Added on Wed, Dec 26, 2018
What are some useful Magento scripts?
Added on Wed, Jan 30, 2019