Jump to content

Edit Posting Please


Recommended Posts

He changed it. Since he was not capable of removing the link, he just altered the contents of add.php to die.

 

So, I would assume he had a script to add records that should be secured in some manner and wasn't. Seems like it was probably a good thing that he did that. Will teach a lesson to always secure pages appropriately.

Link to comment
Share on other sites

More like not to post a link to your actual production server.

 

Real estate agencies have a rule where they do not publish (or only partly publish) real estate info to lure more interested parties (how that works, no idea). I am guessing the add.php, in some way, exposed/removed the properties they have.

Edited by ignace
Link to comment
Share on other sites

  • 2 weeks later...

More like not to post a link to your actual production serve

 

If it is a production server - then it is already out there. If the data should not be publicly accessible then it needs to be secured behind a login or some other process. Obfuscation is never a replacement for security.

Link to comment
Share on other sites

This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.