Re: CommandSecurity?

This WebDNA talk-list message is from

1997


It keeps the original formatting.
numero = 12638
interpreted = N
texte = >I thought I didn't have to put &username=[username]&password=[password] >into replace or delete contexts or forms or urls unless there were fields >in the database with exactly the same names.If your database has no fields named username/password, then WebCatalog does not 'protect' it in any way. Remote users can $Add, $Replace, $Delete, etc. unless you turn on CommandSecurity to prevent anonymous commands.So I still don't understand why your databases seem to be refusing the changes based on embedded contexts, unless you're hiding those contexts inside some kind of password-based hideif.Grant Hulbert, V.P. Engineering | ===== Tools for WebWarriors ===== Pacific Coast Software | WebCatalog Pro, WebCommerce Solution 11770 Bernardo Plaza Court | SiteEdit Pro, SiteCheck, PhotoMaster San Diego, CA 92128 | SiteGuard 619/675-1106 Fax: 619/675-0372 | http://www.smithmicro.com Associated Messages, from the most recent to the oldest:

    
  1. Re: CommandSecurity? (Grant Hulbert 1997)
  2. Re: CommandSecurity? (Kenneth Grome 1997)
  3. Re: CommandSecurity? (Kenneth Grome 1997)
  4. Re: CommandSecurity? (Grant Hulbert 1997)
  5. CommandSecurity? (Kenneth Grome 1997)
  6. CommandSecurity? (Kenneth Grome 1997)
>I thought I didn't have to put &username=[username]&password=[password] >into replace or delete contexts or forms or urls unless there were fields >in the database with exactly the same names.If your database has no fields named username/password, then WebCatalog does not 'protect' it in any way. Remote users can $Add, $Replace, $Delete, etc. unless you turn on CommandSecurity to prevent anonymous commands.So I still don't understand why your databases seem to be refusing the changes based on embedded contexts, unless you're hiding those contexts inside some kind of password-based hideif.Grant Hulbert, V.P. Engineering | ===== Tools for WebWarriors ===== Pacific Coast Software | WebCatalog Pro, WebCommerce Solution 11770 Bernardo Plaza Court | SiteEdit Pro, SiteCheck, PhotoMaster San Diego, CA 92128 | SiteGuard 619/675-1106 Fax: 619/675-0372 | http://www.smithmicro.com Grant Hulbert

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Search in 2 or more catalogs (1997) ThreadMem ignored? (1998) Searching for the end (1998) [searchString] (1997) 'page impression' techniques for banner ads (1999) Updating fields from different platforms (1998) [WebDNA] sendmail - gives an "error -1" (2018) Ads & Dynamically Generated pages (2000) Test again - Am I seeing double? (2003) Re:WebCat hosting sites? (1998) Bug Report, maybe (1997) shipcost vs shiptotal (1998) Time Until (1999) can WC render sites out? (1997) Success Stories (1997) Cancel Subscription (1996) displaying New products (using [date]) (1997) Merchant and WebCat 3.0 (1998) $Quit, $CloseDatabase corrections (1997) Typhoon Pro Admin and Problems (2001)