On Mon, November 7, 2005 3:50 pm, Richard wrote:
> I've heard that php is not particularly secure, making it problematic
> if you
> intend to create a web site with commerce, etc. Is there a particular
> news
> group that addresses security issues? I'm looking for some guidlines
> on
> ensuring tha
On Mon, Nov 07, 2005 at 01:50:59PM -0800, Richard wrote:
> I've heard that php is not particularly secure, making it problematic if you
> intend to create a web site with commerce, etc. Is there a particular news
> group that addresses security issues? I'm looking for some guidlines on
> ensuring t
Hi Richard,
Monday, November 7, 2005, 9:50:59 PM, you wrote:
> I've heard that php is not particularly secure, making it
> problematic if you intend to create a web site with commerce, etc.
> Is there a particular news group that addresses security issues? I'm
> looking for some guidlines on ensu
[snip]
I've heard that php is not particularly secure, making it problematic if
you
intend to create a web site with commerce, etc. Is there a particular
news
group that addresses security issues? I'm looking for some guidlines on
ensuring that my site is secure from malicious hackers.
[/snip]
It'
[EMAIL PROTECTED] wrote:
Hi Chris,
First of all, thanks a lot for sharing your "modus operandi" with us.
On 14 Jan 2004 at 7:32, Chris W wrote:
I then verify that every character in the string is with in the ascii
range of a space to the ~ which is basically all the characters on the
key board
Hi Chris,
First of all, thanks a lot for sharing your "modus operandi" with us.
On 14 Jan 2004 at 7:32, Chris W wrote:
> I then verify that every character in the string is with in the ascii
> range of a space to the ~ which is basically all the characters on the
> key board.
How exactly are y
I wanted to run by everyone what I am doing in my application to help
prevent someone from inadvertently or intensionally breaking the system
and compromising security. First some quick background. This is an
Apache/php/mysql project. It is a wish list database where people can
create an account
OK, my question #2 below is answered by the docs: Safe mode disabled
the backtick operator. But having turned on safe mode on my local test
server, I have another question: Suddenly my include statements that
user relative paths don't work. For example:
include "/absolute/path/to/include/fil
Thanks. Looks like a properly configured safe mode could eliminate a
lot of problems. A few follow-up questions:
1. I see in the PHP doc comments a patch for Apache
(http://luxik.cdi.cz/~devik/apache/) that runs different virtual hosts
as different users. Anyone know anything about it, in te
If your hosting provider has enabled safe mode then others can not
include scripts that have a different uid than the owner of the current
script, that prevents them from including your code.
As far as the files go you could checksum them or if you are honestly
concerned about them being changed s
I run a PHP-based Web site hosted on a shared UNIX server provided by a
pretty standard Web hosting company -- as I imagine do many people.
There are a lot of users on this server, and I know nothing about them.
Apache (and thus PHP) generally runs as www or nobody, so although each
user on
Hi,
I was wondering if anyone would care to comment on the following.
I am currently building a business directory using PHPand MySQL for a
client who wants to be able to maintain the site themselves. The site
will be hosted
on Apache (of course) and I have built an admin section where they can ad
12 matches
Mail list logo
