tedd a écrit :
Hi gang:
Hi
I have a question regarding php and security. My apologies beforehand if this
is common knowledge to everyone except me.
I have a php application sitting at root level on one of my servers who's sole
function is to send me an email whenever it's run. So, whenever I reference
this app, it sends me an email -- very simple.
However, the app isn't reference or linked anywhere on the site, but it still
occasionally runs all by itself.
It runs automagically ?
My question is -- what's triggering it?
did you check your http server log files for this url ?
Is the cause a bot of some type? I was told that spiders/bots could only travel
links outward from your front page (i.e., index) to all other referenced pages,
but could not access things that are not linked -- unless of course they know
the name of the app.
Some tools try to check from a basic url for several directories or
files (/images, /private, etc).
So, why does this php app occasionally run? Are there critters that navigate my
root without my knowledge?
if you wish to limit the access to your script, you can control the IP
of the client using $_SERVER["REMOTE_ADDR"].
Thanks.
tedd
but it's not a very good idea to let the script run without any control.
you can be quickly flooded by mail from this script if it's
called very often during the week-end.
N F
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
