Re: [WebDNA] Stop hacking

This WebDNA talk-list message is from

2013


It keeps the original formatting.
numero = 110684
interpreted = N
texte = This is a multi-part message in MIME format. ------=_SW_1643845028_1378942975_mpa= Content-Type: text/plain; charset=us-ascii; format=flowed Steve, It appears the original coder was trying to stop anyone from trying a context in the URL... however, I'm not sure why that would be desired. We don't know the contents of "noHack.db" so we can't tell you exactly what the coder was trying to protect the site from. Donovan > > --- Original message --- > Subject: [WebDNA] Stop hacking > From: Steve Graham > To: > Date: Wednesday, 11/09/2013 3:53 PM > > > I found this code in a webdna site I am fixing. Someone please say if > this is necessary or recommended to stop hackers in v7.x or v6.2.1: > > [formvariables] > [search db=noHack.db&eqcontextNamedatarq=[url][name][/url]] > [founditems] > [redirect /] > [/founditems] > [/search] > [/formvariables] > > [!] include this file at the top of every page to block hacking when a > context name appears as a formvariable name [/!] > --------------------------------------------------------- This message > is sent to you because you are subscribed to the mailing list > . To unsubscribe, E-mail to: > archives: > http://mail.webdna.us/list/talk@webdna.us Bug Reporting: > support@webdna.us ------=_SW_1643845028_1378942975_mpa= Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: quoted-printable Steve,
It appears the original coder was trying to stop anyone from tryi= ng a context in the URL... however, I'm not sure why that would be desired. = We don't know the contents of "noHack.db" so we can't tell you exactly what = the coder was trying to protect the site from.

Donovan
 =
 
--- Original message ---
Subject: [WebDNA] Stop hacki= ng
From: Steve Graham <skgrahamjr@gmail.com>
To:= <talk@webdna.us>
Date: Wednesday, 11/09/2013 3:53 PM
=
I found this code in a webdna site I am fixing.  Someone pleas= e say if this is necessary or recommended to stop hackers in v7.x or v6.2.1:=

[formvariables]
[search db=3dnoHack.db&eqcontextNamedatarq=3d= [url][name][/url]]
[founditems]
[redirect /]
[/founditems]
[/sea= rch]
[/formvariables]

[!] include this file at the top of every pa= ge to block hacking when a context name appears as a formvariable name [/!]<= br>
--------------------------------------------------------- This mess= age is sent to you because you are subscribed to the mailing list <talk@w= ebdna.us>. To unsubscribe, E-mail to: <talk-leave@webdna.us>archive= s: h= ttp://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.u= s

------=_SW_1643845028_1378942975_mpa=-- Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] Stop hacking (Donovan Brooke 2013)
  2. Re: [WebDNA] Stop hacking (Dan Strong 2013)
  3. Re: [WebDNA] Stop hacking (John Butler 2013)
  4. Re: [WebDNA] Stop hacking (WebDNA 2013)
  5. Re: [WebDNA] Stop hacking (John Butler 2013)
  6. Re: [WebDNA] Stop hacking (Steve Graham 2013)
  7. Re: [WebDNA] Stop hacking (John Butler 2013)
  8. Re: [WebDNA] Stop hacking (John Butler 2013)
  9. Re: [WebDNA] Stop hacking (Steve Graham 2013)
  10. Re: [WebDNA] Stop hacking (Donovan Brooke 2013)
  11. [WebDNA] Stop hacking (Steve Graham 2013)
This is a multi-part message in MIME format. ------=_SW_1643845028_1378942975_mpa= Content-Type: text/plain; charset=us-ascii; format=flowed Steve, It appears the original coder was trying to stop anyone from trying a context in the URL... however, I'm not sure why that would be desired. We don't know the contents of "noHack.db" so we can't tell you exactly what the coder was trying to protect the site from. Donovan > > --- Original message --- > Subject: [WebDNA] Stop hacking > From: Steve Graham > To: > Date: Wednesday, 11/09/2013 3:53 PM > > > I found this code in a webdna site I am fixing. Someone please say if > this is necessary or recommended to stop hackers in v7.x or v6.2.1: > > [formvariables] > [search db=noHack.db&eqcontextNamedatarq=[url][name][/url]] > [founditems] > [redirect /] > [/founditems] > [/search] > [/formvariables] > > [!] include this file at the top of every page to block hacking when a > context name appears as a formvariable name [/!] > --------------------------------------------------------- This message > is sent to you because you are subscribed to the mailing list > . To unsubscribe, E-mail to: > archives: > http://mail.webdna.us/list/talk@webdna.us Bug Reporting: > support@webdna.us ------=_SW_1643845028_1378942975_mpa= Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: quoted-printable Steve,
It appears the original coder was trying to stop anyone from tryi= ng a context in the URL... however, I'm not sure why that would be desired. = We don't know the contents of "noHack.db" so we can't tell you exactly what = the coder was trying to protect the site from.

Donovan
 =
 
--- Original message ---
Subject: [WebDNA] Stop hacki= ng
From: Steve Graham <skgrahamjr@gmail.com>
To:= <talk@webdna.us>
Date: Wednesday, 11/09/2013 3:53 PM
=
I found this code in a webdna site I am fixing.  Someone pleas= e say if this is necessary or recommended to stop hackers in v7.x or v6.2.1:=

[formvariables]
[search db=3dnoHack.db&eqcontextNamedatarq=3d= [url][name][/url]]
[founditems]
[redirect /]
[/founditems]
[/sea= rch]
[/formvariables]

[!] include this file at the top of every pa= ge to block hacking when a context name appears as a formvariable name [/!]<= br>
--------------------------------------------------------- This mess= age is sent to you because you are subscribed to the mailing list <talk@w= ebdna.us>. To unsubscribe, E-mail to: <talk-leave@webdna.us>archive= s: h= ttp://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.u= s

------=_SW_1643845028_1378942975_mpa=-- Donovan Brooke

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Download capabilities (1997) Been meaning to ask... (1997) WebDNA Speed Test (2008) RE: type 2 errors with ssl server (1997) Locking up with WebCatalog... (1997) WebCat and WebTV (1997) Creating a back button (1999) Spawning Holdup? (2000) Purchased cart being overwritten - still !?? (1997) [interpret] inside the db field? (1997) Whats going on? (2000) I'm new be kind (1997) Crashing Server (2000) WebCat b15 Mac plug-in (1997) ConverChars (1999) Secure Web Server (1999) REPOST: Large founditems loops (2000) Latest WebCat release version (1998) [OSX] Creative Page (2003) 2 Mac tools (2000)