Re: CommandSecurity?
This WebDNA talk-list message is from 1997
It keeps the original formatting.
numero = 12638
interpreted = N
texte = >I thought I didn't have to put &username=[username]&password=[password]>into replace or delete contexts or forms or urls unless there were fields>in the database with exactly the same names.If your database has no fields named username/password, then WebCatalog does not 'protect' it in any way. Remote users can $Add, $Replace, $Delete, etc. unless you turn on CommandSecurity to prevent anonymous commands.So I still don't understand why your databases seem to be refusing the changes based on embedded contexts, unless you're hiding those contexts inside some kind of password-based hideif.Grant Hulbert, V.P. Engineering | ===== Tools for WebWarriors =====Pacific Coast Software | WebCatalog Pro, WebCommerce Solution11770 Bernardo Plaza Court | SiteEdit Pro, SiteCheck, PhotoMasterSan Diego, CA 92128 | SiteGuard619/675-1106 Fax: 619/675-0372 | http://www.smithmicro.com
Associated Messages, from the most recent to the oldest:
>I thought I didn't have to put &username=
[username]&password=
[password]>into replace or delete contexts or forms or urls unless there were fields>in the database with exactly the same names.If your database has no fields named username/password, then WebCatalog does not 'protect' it in any way. Remote users can $Add, $Replace, $Delete, etc. unless you turn on CommandSecurity to prevent anonymous commands.So I still don't understand why your databases seem to be refusing the changes based on embedded contexts, unless you're hiding those contexts inside some kind of password-based hideif.Grant Hulbert, V.P. Engineering | ===== Tools for WebWarriors =====Pacific Coast Software | WebCatalog Pro, WebCommerce Solution11770 Bernardo Plaza Court | SiteEdit Pro, SiteCheck, PhotoMasterSan Diego, CA 92128 | SiteGuard619/675-1106 Fax: 619/675-0372 | http://www.smithmicro.com
Grant Hulbert
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
[SHOWIF AND/OR] (1997)
RE:formula.db problems (1999)
syntax question, not in online refernce (1997)
OT: AppleScript question (2003)
[OT] Short word lists (2002)
Suffix Mapping (1998)
[shownext] and descending order (1997)
problem using ErrorMessages.db to redirect requests (2004)
Further on formula.db failure to calculate shipCost (1997)
Diners Club card problems (1999)
[WebDNA] Is a '.webdna' suffix better? (2008)
using showpage and showcart commands (1996)
WebCat2b13MacPlugIn - More limits on [include] (1997)
Search Question (2000)
shownext problems & formvariables (1998)
Emailer (1997)
unable to launch acgi in WebCat (1997)
[math date] with non-US date format (2000)
[lookup] speed sales pitch (2003)
splitting numbers in webDNA? (1997)