Direct Mail Salutation based on tt_address Contact Form FAQ - Frequently Asked Questions Frontend news submitter Responsive Images"Page not found" handler+AOE Linkhandler Configurator1-Click-Login360 degrees shots360° image rotation4-3-feature-example404 Handler404 Page not found handling404 sponsoringA Better Tag CloudA Google Maps GLayerA Google Maps GPolygonA Google Maps GPolylineA-Z Keyword ListAccessibility Glossaryad: Adaptive Imagesad: Google Mapsad: Google Maps Plugin Addressesad: Google Maps Plugin Frontend Usersad: Google Maps Plugin KML-Layerad: Google Maps Plugin Poly-Layerad: LESSad: Social Share Privacyad: Templavoila Cyclead: Templavoila Tabsad: Twitter BootstrapAdaptive ProfilesAdditional attributes for tx_formAdditional TCA FormsAdditional Templavoila SysfolderAddons to tt_productsAddress list for cal eventsAddress List MultilangAddress ManagementAddress visualization with Google Maps and tt_addressaddressgroupsAddThis Social SharingAdmin messageAdmineradON Base DistributionAdv. cal partner integration Advanced Address-List Advanced Banner ManagementAdvanced Caching APIAdvanced FORM objectAdvanced Frontend EditingAdvanced sitemapsAdvanced Template EngineAdvent calendarAgency RegistrationAgency Registration for tt_addressagoraajado inline galleryAjax ChatAjax FE loginAjax mail subscriptionAjax MapAJAX Search EngineAjax Sitemap (kn_sitemap)Ajax Tabbed Google SearchAJAX user loginAjaxifier for TYPO3Akismet for CommentsAkismet for TIMTABAlias for tt_contentalohaAlpha sitemapAlternate selector (Tag Pack)Alumni ListAmazing LESSAmazon S3 FAL Driveramazon_affiliateAND ShadowboxAOE advanced realurl pathAOE Advanced TYPO3 TablesAOE IPauthAOE linkhandlerApache Nutch for TYPO3Apache Solr for TYPO3 CMSApache Solr MediaWiki IndexerApache Solr Redmine IndexerApache Tika for TYPO3Appointment SchedulerARM Google MapARM ShopAsdisAST FlashAtom Feed PublisherAuth Against TYPO3AuthenticatorAuto GroupAuto grouping sitemap and menuAuto-generated baseUrlAutocomplete for indexed_searchautomaketemplateAutomatic base urlAutomatic Country-To-Language Mapping (GeoIP)aux_newsmailer_split_catAwareness FrameworkAwStatsBack-link content elementBackend ACLsBackend Cache using Zend Data CacheBackend Changelog barBackend CookiesBackend demonstrationBackend login captchaBackend User AdministrationBackend user rolesBadges for FE usersBallroom Dancing ExampleBanner-ManagementBannercodesBarcode GeneratorBarschedulerbase BAT-Berlinbase HfS-BerlinBasic site setupBasic Template for Job Marketbasketball-bund.net - import 2Batch MailerBB Language SelectBe groupsBE Secure PasswordBE User Password ResetbeautyOfCode SyntaxHighlighterBeNewsbetatext text commentingBetter ContactBetter Downloads for tt_newsBetter FlexformsBetter TabsBFV widgetbgm hreflangbibBibTex publication listBibTex PublicationsBin TS-TemplatesbinumohanbitsGallerybitsofficeBlogBlogsBMI CalculatorBMI CalculatorBook ReviewBooklets - Brochure OrderingBootstrap for TYPO3 (bootstrap_core)Bootstrap Integration for FSCBootstrap Kickstart PackageBootstrap responsive imagesBootstrap Styled ContentBridge LibBridge XML RenderingBridgle Lib Ext Js GuiBrowser: TYPO3 without PHPbrute force protection for feloginbxSlidercab language linkCache CleanerCache ExpireCache Expires for tt_contentCache Management ExtensioncacheinfoCaddy - TYPO3 Shopping Cartcal base day descriptioncal base location grid viewcal fe ajax interfaceCalDAVCalendar BaseCalendar Base +BrowserCalendar Base Introduction PackageCalendar DisplayCalendar using extbaseCalendarizeCall for PapersCamaligaCapshop3Captcha View HelperCaretakerCaretaker Password CrackerCartCartPaypalCAS ReservationCatalogue RaisonnéCategoriescategories_importipsvCategorizationcb_indexedsearch_autocompleteccco_shoutboxCCDebugccfcdnfilescenoshopce_gallerycHash ToolsChecklistsChGallery DownloadChristof HagedornChristoph FuchsChrome Extension: Clear CachesChrome Extension: Fast TYPO3 Backend switchCinemacivservClean /typo3temp directoryCleanerClear cache clickmenu itemsClear cache recursiveClear Cache RequestClear Processed ImagesClear TYPO3-cacheCli CleanercliinstallClosure CompilerCloudFlare ClientCMISCMP3 - Cross Media Publishing for TYPO3CMP3 DemoCOA_GOcObj CacheCode highlight for tt_newsCode SnippetsComicGalerieCommenting system (comments)Comments Backend ModuleComments PlusComments: fe_user connectorComments: individual closingComments: IP blockingComments: jQuery codeComments: report bad commentcommerceCommerce add articles to basketCommerce advanced productsCommerce CouponsCommerce DAM connectorCommerce first categoryCommerce ImporterCommerce minimum order quantity for articlesCommerce SearchCommerce SEO fieldsCommerce Translation StatusCommerce_EXTcommonTSCommunityCommunity Flexible Layoutcondition notusergroup Config, Metatag & SEO FeaturesConfigure WebsiteConnector ServicesConnector Services - CSVConnector Services - JSONConnector Services - SQLConnector Services - XML/RSS FeedContactsContacts listcontaggedcontainerContent AccessContent Access Per UserContent DesignerContent elements overviewContent ParserContent ReplacerContent SlidingContent StagingContent TableContent with PageBrowser Context ManagerContrast SwitchCookie ControlCookie ManagercooluriCoolURI Page URLs BE ModulecoolURI: Clear cacheCore APICoreUpdateCoverFlow for contentcrawlerCreate Page Tree WizardCrop and Square ThumbnailsCross Google AdsenseCrowdCrowd AuthCSS styled FilelinksCSS to inline convertercss_styled_imgtextCSV DisplaycurlcontentCustom login skincwt_communityCyberPeaceDAM Amazon S3 uploadDAM AssetsetsDAM Download PluginDAM FrontendDAM LightboxDAM SchedulerDAM Templavoila ConnectorDam tt_newsdam_crondam_demoDance-ClubDashboardDAT User Management by SOAPData Display EngineData FilterDatabase SequencerDataViewer ExtensionDate Selector LibraryDatec BlogDatec LosungenDB IntegrationDeactivate opcode cache checkDeal! And TYPO3 can ebay and immobilienscout24.deDeal! ebay values for marketplace Germany/77Deal! ebay values for marketplace US/0Decos Publisherdelete_staticfile_by_3partyDeploymentDeprecation Helperdev/null address and mapsdev/null Eventsdev/null jQuery countdowndev/null robots.txtdev/null webmastersDeveloper Garden Conference Call ExtensionDeveloper Garden Send SMS ExtensionDeveloper libraryDeveloper logDeveloper toolsDeveloper's Logdf_tabsDIGITAGE | SlideshowDigital Asset Management (DAM)Direct MailDirect Mail CompanionDirect Mail HTML viewDirect Mail SalutationDirect Mail SubscriptionDirect RequestDirectoryDisplay ControllerDisplay Controller DebuggerDisqus Commentsdkd_staticuploaddkd_staticupload_scpdkd_staticupload_winscpdkd_toolsdkd_xmlimportdns_managerDoctrineDocumentsDomain checkDomain ManagementDomain Model ExtenderDomain Models for ExtbaseDonationsDownload CenterDownload Explorer (download_explorer)DR Wiki - TYPO3 WikiDragdropDRC News CommentDRC Product Advertisementdreipunktnull glossaryDropbox APIDropbox FAL driverDutydynaflexDynamic Column displayDynamic Content Elements (DCE)Dynamic CSSDynamic email target for formhandlerDynamic Google SitemapDynamic MetadataDynCSS compassEasy route plannerEasylogin with OpenID, OAuth, etc.eBook with turn.jsEcommentsECSSteamEfA Font SizeeGov APIEmail Address Subscriptionemail2powermailEmbed Content in tt_newsEmogrifierEnhanced Media ElementEntree AuthenticationEnvironment BannerEPiServer to TYPO3ESAPI for TYPO3Essential Dots DAM category sortEssential Dots DAM galleryEtherpad Content ElementEvent browserEvent CalendereventnewsEventsevo_nginx_boostExiftoolExport ke_statsExport to WordExport tt_products to MagentoExpressions sandboxEXT:webdav based on SabreDavExtbase DAM accessextbase helper for developersExtbase HijaxExtbase PagerExtbase Persistence ReworkExtbase Solr Storage BackendExtbase Static Info TablesExtbase Validation with TypoScriptExtbase WebservicesextdevevalExtended LinksExtended TCEMAIN.clearCacheCmdExtended webdav extension (gsoc 2011)extensible sitemapExtension BuilderExtension GeneratorExtension Integrity CheckExtension ToolsExtension zu EZB und DBISExternal ImportExternal Import TutorialExternal media (oEmbed) External Providers for Direct Mailextjsextracacheextrepextrep_mgmFacebook Comments for newsFacebook ConnectFacebook OpenGraphFacebook pluginFacebook Social PluginsFacebook: Social PluginsFacebookConnect - The Amazing WayFaceted SearchFAL Amazon S3 DriverFAL AWS CF SupportFAL AWS S3 DriverFAL CIFS driverFAL Dropbox DriverFAL FTP DriverFAL GalleryFAL IndexingFAL Local XT DriverFAL Rackspace Cloud FilesFAL Remote ProcessingFAL sftp Driver (DEPRECATED)FAL test driverFAL WebDAV DriverFancybox 2.0 - The Amazing Wayfdfx_2colsfdfx_3colsfdfx_beimagefdfx_svnFE Address editFE Edit for multicolumnFE IP-AuthenticationFE IP-AutologinFE Login DebuggerFE User ManagementFeature Flags for TYPO3Feed ImporterFeed ReaderFeedbackFeedback / Comments / GuestbookFeedForwardFeManager - TYPO3 Frontend User RegistrationFEUser - BELoginFeuserloginsystemfeusermanagementfile based DataStructuresFile ExplorerFile Explorer CheckFile handlingFile ListFile ListFile ManagerFile PageFile search toolFilelinks DAM usagefire debugfire devlogFire Fighter ManagerfkuwebsliceFlash Ajax Video PlayerFlash Player IntegrationFlexFlexform based IFrameFlexible content elementFlexible content elementsFlickr Imagesflickr SetFlip it!Flip it! - ResourcesFluid - ViewHelperFluid Debugging ViewHelpersFluid layoutFluid mailerFluid MicrositeFluid PaginateFluid PDF viewFluid pibaseFluid RecommendationFluid-based Data DisplayFluid-Template-Manager (FTM)Fluid: Website TemplateFLV Player 2Font sizerForce 404 languageForce Realurls 2format TYPO3 ToolsFormhandlerFormhandler BackendFormhandler ExtbaseFormhandler on FluidFormhandler PaymentFormhandler subscriptionFormhandlerGuiFormidableFORMidable DB m:m data handlerformsFoundation 5FPDFFramed YouTubeFre!freeCap CAPTCHAfreecap_readFreesh EventsFront End User RegistrationFrontend change passwordFrontend DashboardFrontend FilemanagerFrontend MediaFrontend NewsFrontend Shibboleth ProtectionFrontend TreeviewFrontend UploadFrontend user autologinFrontend user master loginFrontend User Profile & RegistrationFrontend User RegistrationFrontend User Registrationfrontendformslibfr_portfolioFSC Layout WrapFSC Responsive MediaFULLTEXT for indexed_searchGabrielGalleriaGalleria Plugin for TYPO3Gallery2geckoboardGeko Typo3 FrameworkGeneral data displayGeneric Domain ModelsGeneric expression parserGeneric GalleryGeneric Layar Service ProviderGeneric MailerGeolocateGeotargeted BannerGerman Bank Identifier CodesGerman date format: feuser_regGestion de membresGestion des publicationsGestion des thèsesGet values from FlexFormsGetCachesgForumGH AccordionGH Change Font SizeGH Disclaimer RedirectGH List SubscribeGH Multi TagGH Random ContentGimme Five!gkh RSS ImportGliderGlobal Weather WSGlossar der UB KaiserslauternGMap 3Golb - Blog The Page WayGoogle AnalyticsGoogle AnalyticsGoogle Analytics IntegrationGoogle CalendarGoogle MapsGoogle Maps APIGoogle Maps API ExtbaseGoogle Material Design LiteGoogle PagespeedGoogle plusGoogle Plus One for tt_newsGoogle Query Data ProviderGoogle Site SearchGoogle Site SearchGoogle sitemapGoogle Store LocatorGoogle Tag Manager Gorillary Gallerygov_masterconfiggraytreeGrid ElementsGrids for BootstrapGrids for foundationgroupdelegationgruene-autos.orgGS Favicon for Bootstrap PackageGSA Admin (pt_gsaadmin)GSA Article ListGSA CategoriesGSA Dunning (pt_gsadunning)GSA Shop (pt_gsashop)GSA Socket (pt_gsasocket)GSA Standalone DatabaseGSA Stock (pt_gsastock)GSA User RegistrationGuest BookguestbookGuidepostHappy Feet Footnotesheads listHernnhuter LosungHigh Performance Plugin SystemHipChatHomehookerhr_vbulletin_connectHTML ImportHTML to PDFHTML-based Data ConsumerHTML5 BoilerplateHTML5 Media fallbackHTML5 Media tagsHTML5 Video Playerhtml5videoHTTP 301 Redirect For DummieshubicHut-ManagerHWT ResubmissionHybridAuthHypeHype BaseHype DirectoryHype ErrorHype GridHype HTML5Hype StoreHyphenator for TYPO3Hyves FeedICE PackIcon fontICS AWStatsID: SalesforceIgbinaryImage Flow GalleryImage galleryImage GalleryImage Lightbox v2Image OptimizerImage Processing via ImagickImage ResizerImage tooltipsImage with Multimediaimage-text editviewImagemap WizardImmowelt Extbase APIImport ManagerImportrImproved FE login securityImproved overlaysin2facebookin2rssin2snippetsIncident Handling SystemIndexed Search mmforum hookIndexedSearch crawler for tt_newsIndexedSearch crawler for tt_news incl rendered contentInfinite Scroll GalleryInfoBlockInsert Link Addon for Bootstrap Internal note tooltipIntroduction PlusInventoryIP-range for Admins/Be-useriPhone Routingirfaq - Modern FAQIRRE element for tt_newsIRRE Tutorialissuu.com Flip PDFsITAW GigdisplayerITS pdf GeneratorIVW PixelIVW TagsIwImmo JasmineJavascript and CSS Optimizer Javascript Language LabelsJavascript Localization JavaScript-Testerjb_realurl_regenerationJCC Appointment ModuleJettsJH Captchajk_pollJob FairJob MarketJokers Mobilejoliprint buttonjpCarouseljpFaqjQuery autocompletejQuery ColorboxjQuery Content ToolsjQuery LightboxJQuery Mobile fluid templatesjQuery.popeyejQueryMobilejsr170repo_demojsr170supportjulle_eventsJW PlayerJW Player as media elementK23 Image CropKaltura Video PlatformKarussell: a jQuery galleryKB PackmanKB Page Icon kb_configkb_displaykb_imageeditkb_kickstarterkb_shopKDE vfske DomPDFKerio Mailserver Integrationkeyword menuke_contactske_forumke_forum_notificationske_questionnaire (RE-BAKE)ke_UserregisterkickstarterkickstartermvcKIWI Gig ListerKIWI PopupKlicktrieb Frontend FilemanagerKSS Responsive Gumby TemplateKurz FieldsL10N ServerLanguage DetectionLanguage File EditorLanguage SelectionLanguage selectorLanguage SuggestionLanguage switchLanguagevisibilityLanguagevisibility support for extensionsLDAP / SSO AuthenticationLDAP Authentication ServiceLDAP Core LibraryleafletLibrary (based on extbase)Library for FE-Plugins (Div)Library for Frontend PluginslibunzippedLiga64LightcaseLink type switchLinkcheckerLinkedin LinklayoutLinklistLinkvalidator for TemplaVoila!List CalendarList Categorized PagesList generator (pt_list)list reloadedListmodule AdvancedllxmltranslateLO BackendhelperLO T3Blog template-basedLoadbalanced Downloadslocal company search and viewLocal filesystem FAL driver CDNLocalization Manager (l10nmgr)Locking AdminLog Backend ModuleLog ExampleLogical FormLogin AsLogin limitloginusertracklogitLogWriter for E-MailLogWriter for FirePHPlonewsaddressLorem IpsumLotus Notes BasisLotus Notes NewsLotus Notes SearchLowlevel tasksLucene Workshop ExtensionLumoNet Google MapsLumoNet ImmoScout ExposeLumoNet PHP IncludeLunch Menu SystemMagazine Style ImagesMagentoMagento Auto SignonMagento category menuMagnific PopupMagnific Popup - Hook ExamplesMail encryption for TYPO3 form handlersmail2newsMailChimp SubscribeMailformMailform new generationMailformplus MVCmaillisttofaqMaintenanceMantis ConnectorMap of User Profile ImagesMarch 8: The worker's women framework for TV!MarketplaceMarkets/Countries inside TYPO3Maskmask_exportMathGuardMB :: Frontend User LoginMB Image Gallerymbi_products_categoriesMedia CenterMedia ManagementMedia TeamMediaboxMediaElementsMediaViewHelper for kt_fefmMember InfosheetsMemcached DiagnosisMemoListmenuMenu BalancerMerge plugin flexformMessage QueueMeta Fe EditMetadata and content analysis serviceMetadata in TSMetaSEO - TYPO3 SEO Enhancementsmfc_authormfc_canonicalmh_branchenbuchmh_simplegalleryMicrosoft Web AppMigrationsminiCRMMinifier for TYPO3MinifymininewsMK A/B TestingMK DAM2FALMK FormsMK LibMK LogMK MailerMK PHPIDSMK SanitizedparametersMK Toolsmklv_communitymksearchml_dbsyncMM BirthdaygreetingMM Clean filelinkMM DAM ChangeInfoMM DAM FileListMM ECL - ExtensionClassLibraryMM Property ManagerMM ReferenceListMM-tables Providermmforeignmm_forummm_forum 2.0mm_forum Import modulemm_forum Messenger v2mm_forum post anonymizermm_forum_blogmm_forum_commentsmm_forum_newsmnoGoSearch Full-Text SearchmnoGoSearch: URL ParametersMobile App FactoryMobile BackendMobile DetectorMobile devices detectionMobile HelperMobile RedirectMOC Varnishmoc_filemanagermodernpackageMoneylibMonoslideshowMooFlow V0.2 integrationMooslide - a mootools tickerMootools image sliderMOOX Bootstrap ResponsiveMOOX MailerMOOX News & Blog SystemMost popuplar news with maxAgeMouse Over Effects for ImagesMOVED TO https://github.com/georgringer/newsMovie DatabaseMovie Database (tmd_movie)MP3 Audio Player APIMS Ajax Content LoaderMT System Szablon [MT Tempalte System]Multi Server WorkflowMulti-channel contextsMulticolumn for the page moduleMultidomain PublishingMultimedia DAM usageMultimedia gallery based on adgalleryMultimedia w/FallbackMultiple Action FormsMultishopmusicviewMVC + ExtJSMVC + ExtJS samplesMVC BaseMVC News ExampleMW Imagemapmw ShellmwcsvMy quiz and pollMy TYPO3MySQL ProfilerNAViTiA Librarync_cu3erNested Content ElementsNetBrothers DownloaderNetresearch Content Delivery Network HelperNetresearch Easy WorkspacenewloginboxNews 2 Direct MailNews 404News eventNews EventsNews FalNews RSS ImporterNews to eventsNews to Facebook IntegrationNews- Blogsystemnews2forumNewscalendarNewsletterNewsletter SubscriptionNewsletter SubscriptionNewsletter via news (tt_news)news_packNexusnh_shared_ceNITSAN HelloBar, <br> An API Plugin of HelloBar.comNittygrittyNivo SliderNN AddressNNTP-ReaderNova ShadowboxnsvpingbacksNumber as Usernamenwt_replacerNxExtbasePdfoblady debugODS commerce deliveryOfficial Twitter tweet buttonOLC FlightsOne is Enough LibraryOne-time FE AccountOnline ProcessesOnline Vital StatisticsOpen Graph ObjectOpen Graph protocolOpendataOpenStreetMapOperationsOrg +npz.ch - bookingOrganiser +ReferencesOrganiser +RepertoireOrganiser +WorkshopsOrganiser - responsive TYPO3 for the lobbies and the organisersOrganiser - TemplateOrganiser Installer - TYPO3 for the lobbies and the organisersOverlay-BoxPAE Media LibraryPage BookmarkPage CommentsPage module CSSPage pathPage Teaser (with Fluid)Page tree toolsPagebrowserPagecollectorPagehits: HistoryPages categorizationPages Tree iconsPagewizardPaginatePartner ManagementParty Information FrameworkPAS3Password Expiry and ResetPassword Managerpasswords for mm_forum threadsPatenschaftenPayment Transactor APIpaymentlibPaymentlib for commercePaymentlib for CommercePayPal seminars integrationpaypal2commercepbimagegraphpbsurveyexportpbsurveystatisticspChart charting library integrationPDF ArchivPDF Controller 3PDF Viewerpdf viewerpdf_generator2pear mailPedanticPeimic's RealURL ConfigurationPerfect LightboxPerformance graphs for TYPO3Person ManagerPersonalize contentPersonalized Direct Mail SubscriptionPetitionPhamlpPhonegapphoto galleryphotocompetitionPHP Quick ProfilerPHP-based Data DisplayPHPIDS nextGen PHPlot IntegrationphpMyAdminphptalPHPUnitPHPUnit CLI interfacePicasaweb IntegratorPITS Google CSEPits Site Statisticspit_googlemapsPiwikPiwikintegration in TYPO3Placement ServicePlaintext LibraryPlugin cache analyzerPlugin cache enginePlUploadPlupload for FEPluploader Frontendpm Todo PMK "I hate IE"PMK AutokeywordsPMK Cat2MenuPMK Forced DownloadPMK GlossaryPMK Index Search AutocompleterPMK MP3 Player PMK News TwitterPMK ShadowboxPMK SlimboxPMK TSVoilaPongbackPopular pagesPositionerPostFinance E-PaymentPostfixpowermailPowermail ajax submitPowermail div classPowermail JqueryPowermail LimitPowermail PDFPowermail Salesforce integrationPowermail-Limit 2powermail_condpowermail_frontendpowermail_mulpowermail_optinpowermail_sendpostPresentation MenuPrivacy GuardPrize drawProduct CatalogProject ReferencesProject SummaryprotocolCreatorProwl - Message ServicePS3 Trophyspt_extlistpt_jqueryuipt_objectstoragept_xml2pdfPublication databasepunkt.de Tools (pt_tools)punycodepurgepush2rss_3dspwComments captchapwComments pluginpw_commentsQm BackendLayoutQR-CodesQuestionaireQueue frameworkQuick Shop InstallerQuick Shop StockQuick Shop TemplateQuick Shop – responsive E-Commerce with TYPO3QuickyQype ListRabbitMQRadial Search (Umkreissuche)Random bannersRandom Files SortingRating AXRatingsReadSpeakerReadspeaker for TYPO3Realty managementRealty ManagerRealURL Manag. module-add ex.RealURL ManagementRealURL PatchRealURL: Clear cachereCAPTCHARecaptchareCAPTCHA for EXT:commentsRecaptcha for formrecentcontentRecord LinkRecord list previewRecord tree for TCARecords management in a BE moduleRedirectRedirect and logRedirect FE-User at LoginRedirect LinkhandlingRedirect URLRedirect via TyposcriptRedirectorRegisterregister4calRelational Link ElementsRelax!Remote ServerRemote Survey ProjectReset backend passwordReset CSSResize images automaticallyResponsive PreviewResponsive previewResponsive TemplateResponsive TYPO3REST clientREST client UIreturn mail analysisrggooglemaprgmediaimagesrgnewscergsmoothgalleryrg_smoothgalleryRijksoverheidrlmp_tvnotesRobotsRole Based Access ControllRoles 2RoundCornersRouteRPX LoginRS | Advanded TYPO3 LockingRS | Extbase (tt_)AddressRSS DisplayRSS News Feedrssmanager rteRTE anchorsrtp_smartySafe Record EditingSalted pw for sr_feuser_reg.Salted user password hashesSASS CompilersatsumasSAV Library KickstarterSAV Library MvcSAV Library PlusSB DownloaderSB FAQSB FolderdownloadSB PartnerSB PortfolioSB Portfolio 2Scheduler via HTTPScoop.ItscriptaculousscriptmergerScriptmerger BlessscriptsSDU ConnectSearch engine (mnogosearch)Search Engine OptimizationSearchmetrics Content ComposerSecure DownloadSecure DownloadsSecure DownloadsSecure Downloads for FALSecured files using mod_rewriteSecurity CheckSeitwert StatisticsSelf TestSemantic TemplatesSeminar managementSeminar Managerseminars ke_yac connectorseminars/cal redirectSend-A-CardSEO BasicsSEO BuddySEO Dynamic Tag 3SEO Pack for tt_newsSERP PreviewsessionplanerSet default author/emailSet FE timezoneSet tt_news archive date automaticallySevenpackSexy bookmarks for tt_newsSF MailsubscriptionSF SVG APIsfpipauthsharethisShibboleth authenticationShipping costs depend on weightShop SystemShop system by Nikitin S.M.Shop3oxShopping Cart for TYPO3Shopping Cart for TYPO3 - Order HandlerShopping Cart for TYPO3 - PayPalShopping Cart for TYPO3 - PDF GeneratorShopping Cart for TYPO3 - ProductsShopr* Entertainment ShoppingShopware Integration for TYPO3Show commerce article attributes in basketShow Item Extended InfoSimple AJAX ShoutboxSimple BlogSimple booking extensionSimple DownloadcenterSimple FAQSimple Provider (Tesseract)Simple QuizSimple SliderSimple YouTubeSimple YoutubeSimpleaddressSimpleCalendarSimplegridssimpliRobotsSimulate BE user on FE loginSingle-SignOnsitecatsSitemanagerSitemap GeneratorSitepackageSitewards Flash FilterSJR OffersSkype status buttonsk_calendarsk_simplegallerySlick - responsive Carousel SliderSLUB EventsSM - Google CalendarSmalladssmartysmarty_demoSmilie APISmilie ViewhelperSMSKAUFEN GatewaySnippets (pastecode)Snippets (t3o_snippets, OBSOLETE)Snow FlurrysnowbabelSnowstormSOAP echo webserviceSocial BookmarksSocial Login to TYPO3Social Media StreamsSocial Media WidgetsSocial Network - Recommend linkSocial Network share tt_newsSocial PublishersocialsSocials for tt_newsSocialshareprivacy for newssocialshareprivacy for tt_newsSokobanSolr AdministrationSolr BoutiqueSolrPanelSorting NewsSource OptimizationSpamshield for FormhandlerSpamshield for TYPO3speakingurisSphinx Documentation Viewer PluginSphinx Python Documentation GeneratorSpotifySpriteSprite icon overviewSpritesSQL-based Data ProviderSR GD Crop & ResizeSRA LibrarySSL HelperStart TYPO3 ResponsiveStart TYPO3 Responsive CustomerStatic CitiesStatic file cacheStatic Info TablesStatic Info Tables (de)Static info tables (French)Static Info Tables (pl)Static Info Tables for ExtbaseStatic Info Tables ManagerStatic PublishStatic redirectsStatic SexStatic Template for Websitesstaticpubstaticpub page-exportstaticuploadrsyncstatic_info_tables_czStatisticsStop Duplicate ContentStop wordsStop words for RealURLStore FinderStore Powermail form in databaseStore URLStreamio.comStructured Data Rendering for TYPO3Student-OfficeSubsitewizardsubversion support for TYPO3Supersized - full screen background slideshowSupport ChatSurveysvo_tvplaintextSWFObjectSWFTOOLS for LinuxSWFTOOLS for Windowsswfupload for ceSwigmore InstituteSynchronize fe_users with XINGSyntaxhighlightSystem Infosys_messagessys_notepadsys_todossys_workflowsT3 Admin communityT3 fancyboxT3 jQueryT3 MonkeyT3 MootoolsT3 SocialsT3 Web WidgetsT3BLOGt3blog uses jQueryT3BLOG Widget Demot3ddy - Super cute tabs and accordionst3deployT3devt3feblogt3filelistT3Flext3flextoolkitt3mt3s_jslidernewst3templeT3UsersT3X CSS styled content imp.T3X direct_mail header-patchT3X SpamassassinT3X ToolTipT3X TYPO3 skinTabbed ContentTable CleanerTable for Connector service SQLTag PackTag Pack Data ProviderTagcloud ExtensionTags for pagestail frontendtail – a generic REST clienttaskcenter_modulestaskcenter_recenttaskcenter_rootlistTC DirectmailTCA/TCE Tutorials and UnitTestsTCAobjectstcemainhookstc_beuserTD CalendarTeam developer helpersTemplate builderTemplate for YAML and TemplavoilaTemplate SelectorTemplaVoilaTemplaVoila Content SlideTemplavoila drag'n dropTemplaVoila FrameworkTemplaVoila tools for file based ds and mappingTEND flickrTEND YouTubeTEND YouTube to tt_newsTEQneers SEO Enhancements (dead -> please use MetaSEO)TEQneers SlideshowTER AnnouncerTER Docs Solr IndexerTER Update Task (obsolete)The Bridge to FLOW3The Tesseract ProjectThemes a theme selector, like known from wordpressTidioChatTidy or HtmLawed easy configTimekeepingtimtabTIMTAB Social Bookmark IconstimtawTiny SourcetinyMCETinyMCE RTETinyMCE v4 as TYPO3 RTETip a friendTip-A-FriendTitle Tag ConfigurationTM GalleryTM PasteBinTocToc Comments - AJAX Social Network ComponentsTocToc Index Reloadedtollwerk Google Analyticstollwerk Lucene searchToolbox UTF8Tour Extensiontox | Google AJAX Librariestrade ecommerceTranslation helpertravelguidetree or list message boardtreesTroubleticketsTruncate Job Trusted Hosts PatterntscTSconfig Pages and Users by extManagertslib_feTCE backportts_extbaselinkstt_addresstt_guesttt_newstt_news Cache Clear by Tagtt_news Cache Clearlikett_news cache expirestt_news Cache Managementtt_news integration for YAGtt_news select configurationtt_news select configurationTurnjsTW RSS FeedsTweet and Like button tt_newsTweet ThistwitterTwitter bootstrapTwitter pluginTwitter Search (twittersearch)Two column text with imageTypo3 / CakePHPTYPO3 adapted xaJaxTYPO3 agenciesTYPO3 API compatibility libraryTYPO3 build toolsTYPO3 CiviCRMTypo3 ClusterTYPO3 CMS Compatibility LayerTYPO3 CMS in the cloudTYPO3 ConfigViewerTYPO3 Design KitTYPO3 Developer APITYPO3 Drivercore Content ElementTYPO3 Facebook extensionTYPO3 FeedTYPO3 Foundation FrameworkTYPO3 HyphenatorTYPO3 jQuery interfaceTYPO3 Media GalleryTYPO3 more scalableTypo3 PHPIDSTYPO3 profilerTYPO3 QuixplorerTYPO3 RegistrationTYPO3 ToGoTYPO3 Update CheckTYPO3 WrapperTYPO3Mindtypo3orgtyposcripttypo3rtlTypoGentotypogorum - DMS/ECM - agorumTyposcript BlogTyposcript CETypoScript CheckTypoScript FilesTypoScript LiveEditorTyposcript Service for Calendar Basetyposcript2contentelementUnit tests for tt_newsUniversal page browserUniversal PageteaserUniversal SearchbarUniversity Seminar-Calendarupate refindex of Typo3Update page on news updateUpload to TERUploadcareURL shortenerURL ToolsUseful informations in reports moduleUseful tasks in scheduler moduleUsers OnlineUTF-8 ConverterUTOPIAVanilla Single Sign OnVarnish Cache ControlVarnish ConnectorVehiclesve_guestbookVFSVibéoVideo Content ElementVidi (List Component)View Helper CollectionVimeo VideoViral Tweet GeneratorVR-ePay ePaymentWarpstock Europe EventswatchwordsWeb Application FirewallWeb>List Actionswebcon: Accessible browse results for indexed searchwebconsulting FTP transferWebKit PDFWebservices for TYPO3WEC MapWheelchairWishlistWordPress grabberWordpress IntegrationworkshopsWorkspace PreviewWorkspace Preview AdviceworldcupWOW - Character DisplayWOW - Item DisplayWOW - Raid ManagementWRSws_statswt_calculating_captchawt_carmarketwt_cart for tt_newswt_commerce_previewwt_contentchangewt_csstooltipwt_directorywt_dynamictargetwt_email4downloadwt_gallerywt_gallery_descriptionwt_individualshippingcostwt_lightwindowwt_socialbookmarkswt_spamshieldwt_twitterxajaxxajax libraryxajax_tutorXING ButtonXLF EditorXLIFFXML Flash Tag CloudXML RSS-Feed ImportXML templating for JpGraphXML to Front EndXML Tools for ExtbaseXML xPath ParserXML-Sitemap for pages and mediaXPATH Content ObjectXSLT Content ObjectxtcmodifiedYAC - Yet another CalendarYAG - Theme SimpleviewerYAG - Yet Another GalleryYAML for TemplaVoilaYAML for TYPO3Yellowpay for TYPO3 commerceYet Another Feed ImporterYet another GalleryYet another Google searchYIID it! like/dislike buttonYoutube APIYoutube Data V3YouTube Fancy PlaylistYubiKey two-factor OTP authenticationZend FrameworkZend Framework extensions[clickstorm] SEO[DEPRECATED] Please refer to Quick Shop![NITSAN] All In One Lightbox/Modalbox[NITSAN] Maintenance ModeРазработка на Extbase

Wiki

This extension is created, sponsored and maintained by www.e-net.info

This is a wiki page! Please edit and help improving it!

Introduction

Test backend user password strength.

The caretaker password cracker is an extension for the caretaker. It fetches backend user passwords from caretaker instances and feeds them to John the Ripper processes who tries to crack the passwords. If a password was successfully cracked, the corresponding caretaker test of the affected instance is marked as failure. This can be used to ensure a basic strength of your customers backend login passwords.

Disclaimer

Fiddling with customer passwords and cracking them might be a problem for your customer. You may want to ask legal for possible consequences.

Furthermore, the caretaker server instance will have a list of caretaker nodes with its backend users and its hashes. Keep an eye on security measures for this CMS instance, some ideas: own server, do not mix ext:caretaker with other CMS things, https only, only reachable from own networks, ...

If john is unable to crack a password hash in reasonable time, it does not mean that the password is "good" or "safe". A professional attacker can very well specialize for this task better than you and crack the hash even if you don't. He could for example throw more CPU hardware at the problem or could crack the hashes in GPU (john provides GPU functionality for some of the TYPO3 CMS hash types, feel free to document the options here if you manage to get this to work).

Features

The following hash types can be cracked if everything is correctly set up:
  • Simple md5 (no saltedpasswords installed)
  • blowfish (saltedpasswords)
  • phpass (saltedpasswords)
  • salted-md5 (saltedpasswords)

Limitations:
ext:saltedpasswords comes with a scheduler task that "upgrades" simple md5 passwords to other hash types. Those "converted" passwords are prefixed with a "M" in the database. They are transferred to "usual" hashes upon next login of a converted user. Those "M" prefixed hashes can currently not be cracked by the extension.

Target group

  • You should have a working caretaker running, you should be able to manage it and understand its concept
  • You need to compile john the ripper. You need more than simple administrator knowledge on unix systems and you might need to debug your way through the application to get it to work.
  • You need a new "data fetcher" on the "client" caretaker installations, so you will need to patch and roll out a modified caretaker_instance extension.
  • You might be faced with incompatibilities and other woes and should feel lucky hacking things.

System architecture

  • First, there is a data fetcher class within ext:caretaker_instance. This runs on the caretaker client nodes, fetches all backend user rows from the instance and sends them to the master caretaker instance.
  • The master caretaker instance stuffs all "active" backend user records to an own table together with an information from which node the data was fetched. It also checks for passwords marked as "cracked" in the database table and lets the according instance tests fail.
  • The test marks in the core registry if passwords changed and if new users are found. In this case the password hash lists for john need to be recreated and the john processes must be restarted.
  • A scheduler task regularly checks the "changed" flag, creates text files for john the ripper with user-node and hash and starts / stops john processes (one process per hash type). The task also checks for cracked passwords and marks them as insecure in the database table.

Dependencies

We currently only know of one caretaker server instance where this extension is in used. It should run on different versions, maybe with small changes.

Current version matrix in production:

  • TYPO3 CMS 4.5
  • ext:caretaker 0.3.1
  • ext:caretaker_instance 0.3.5 (with slight, non-related modifications)
  • john: john-1.7.9-jumbo-7 (this is be important, other packages don't support all hashes or need some different parameters)

Alternatives to that:

  • ext:caretaker 0.4.1
  • ext:caretaker_instance 0.4.1 (hint: apply patch manually!)
  • john: john-1.7.8-1 from the debian repositories. Comes only (is that confirmed?!) with supports for (salted) md5 passwords, but works just as fine.

Installation

Things to do on client nodes

  • Patch caretaker_instance with the delivered patch file to get the "data fetcher" class up and running.

Things to do on server node

  • Install ext:caretaker_password_cracker
  • Create directory "john" next to your document root (this is where john configuration and password lists are stored)
  • Create sub directories "passwordLists", "sessions" and "wordlists" within john directory. Those directories need to be writable by the executing web server user!
  • Download john-1.7.9-jumbo-7.tar.gz within john directory from http://www.openwall.com/john/, unpack, link "john" to "john-1.7.9-jumbo-7"
  • Compile john in src/ directory (eg. with linux-x86-sse2i). Executables will then be found in run/ directory
  • Adapt absolute path in $johnExecutable in Classes/Task/JohnAdapter.php (or create a patch to put this path into the task via additional field provider)
  • Run the test for some client node and verify that the database table on the server node is filled with rows. The test itself only fetches the user data from the client nodes.
  • Execute the task "John password cracker adapter" and verify that one john process is started per different hash method (maximum 4 for 4 hash types)
  • Add the task as regular scheduler task and make it run once in a while, eg. some minutes after the caretaker tests where executed

Additional hints

  • To cope with different hash lists at once, john needs the session parameter when called. The php class takes care of that.
  • The john processes typically run all the time and finish only if all passwords were cracked (which typically does not happen).
  • The running processes are only stopped and restarted if a new password occurs (the test recognizes this and adds a hint to the CMS core registry that the processes need to be restarted). The reason for not re-starting the processes every couple of minutes is that john starts from scratch if the password lists changed. So: Long running processes are good, they shouldn't be started and stopped too often.
  • If debugging the system because something is wrong, take a look at the registry entries (table tx_registry - rows namespaced with the extension name). They can be safely removed to force a reload of the password lists.
  • It also helps to execute the "exec" command on the shell (as the executing shell-user) to see if john is happy with format an such.
  • The cracked passwords are not transferred back to the TYPO3 table, they are only marked as cracked, but the real plaintext password is not stored in the CMS again.
  • To manage the john processes, the PID of a forked process is also stored in the registry. During testing, or if you killed those processes manually you may just remove the according registry entries. The task will then just restart the processes on next run.
  • The php extension code is pretty straight forward. It should be easy to understand and debug - take a look.

Help

If you manage to get this setup working (it might be not trivial if doing for the first time), please give feedback and help improving this extension, the documentation.

Test parameters

To verify the correct behavior, here is a list of hashes that should be cracked successfully. You could add those passwords to some test (!) node and see if the test turns red after a while.
  • acbd18db4cc2f85cedef654fccc4a4d8 (simple md5)
  • $1$1V4Gdrpv$888bdBWrA843R6FoMlIzg/ (salted md5)
  • $2a$07$6t0QrwroUKs5HTctbscxJ.6piwW03QOmmVYfcJ/ULE1SbAYXbowry (blowfish)
  • $P$CTailGzwJzhBK28Glt6mJZ7E2dNIlq/ (phpass)

Possible improvements

  • It would be cool if the system could also break the "M" prefixed hash types. For the md5(md5(password) . salt) method this is doable but currently requires a (not yet done) patch for john.
  • It would also be nice if the system could fetch and crack the InstallToolPassword hashes.