Jump to content

Archived

This topic is now archived and is closed to further replies.

miligraf

Make files secure

Recommended Posts

I got a tutorial management system in which i can add, edit or delete tutorials; how do i make those files secure? and can the index (where you see all the tutorials) can it be secured?

i dont wanna find one day that someone just erased all the database.

thx.

Share this post


Link to post
Share on other sites
I guess it would depend on what management scripts you are using.

As for the database, make sure the user account that can directly access the database has a tricky password. Alphanumeric, non-common dictionary word, etc

As for your management system and making sure other people, when logged in, do not delete tutorials. I'd check to see if there are 'user levels' so that if you're not a certain level you can not delete the entry.

I have one thing I've implementated where the user who creates the entry, is the only one allowed to delete it unless they are of the highest userlevel. This of course the user only accesses via PHP and has no access to the actual database itself.

Share this post


Link to post
Share on other sites
i meant something like SQL injection thing...

but also, i added some .htaccess but it only works when trying to access the folder, if i know the exact name of a file inside, i can access it...lol. since i have all done, is there an easy way to create a login thingy with PHP without making a big mess?

Share this post


Link to post
Share on other sites

×

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.