webmasterD

appreciate the feedback, blufish indeed, no database was dropped and the chat does filter metacharacters thanks for testing

hehe so does anyone have any feedback about the Online Notepad application?

maybe you didn't read my last post thoroughly enough 2.2.9 is the version of apache which has the latest mod_ssl built into it there isn't even version 2.2.9 of mod_ssl, so the program you use gave a false positive

what did you use to check the version of mod_ssl? because the version on my webhost (2.2.9) is the most recent. As of Apache 2, the mod_ssl no longer uses the old numbering scheme, and is built into Apache (which was just updated within the past month). so you probably got a false positive good find, I have fixed them. how did you find /photos/includes/sanitize.php? lucky guess? Were all of the e-mail addresses you found inside the http://driber.net/homepage folder? If so, I'm not bothered by them But they shouldn't occur in any other parts of my site.

Hey all. Please test my site for vulnerabilities: http://driber.net Especially the photo album (it should not be accessible without a correct password) and the Online Notepad (click on applications) should be secure for any types of attacks. And as for the Online Notepad, please test this for usability (try to screw something up, create accounts, try out lost password, changing profile, etc)