Re: CommandSecurity?

This WebDNA talk-list message is from

1997


It keeps the original formatting.
numero = 12638
interpreted = N
texte = >I thought I didn't have to put &username=[username]&password=[password] >into replace or delete contexts or forms or urls unless there were fields >in the database with exactly the same names.If your database has no fields named username/password, then WebCatalog does not 'protect' it in any way. Remote users can $Add, $Replace, $Delete, etc. unless you turn on CommandSecurity to prevent anonymous commands.So I still don't understand why your databases seem to be refusing the changes based on embedded contexts, unless you're hiding those contexts inside some kind of password-based hideif.Grant Hulbert, V.P. Engineering | ===== Tools for WebWarriors ===== Pacific Coast Software | WebCatalog Pro, WebCommerce Solution 11770 Bernardo Plaza Court | SiteEdit Pro, SiteCheck, PhotoMaster San Diego, CA 92128 | SiteGuard 619/675-1106 Fax: 619/675-0372 | http://www.smithmicro.com Associated Messages, from the most recent to the oldest:

    
  1. Re: CommandSecurity? (Grant Hulbert 1997)
  2. Re: CommandSecurity? (Kenneth Grome 1997)
  3. Re: CommandSecurity? (Kenneth Grome 1997)
  4. Re: CommandSecurity? (Grant Hulbert 1997)
  5. CommandSecurity? (Kenneth Grome 1997)
  6. CommandSecurity? (Kenneth Grome 1997)
>I thought I didn't have to put &username=[username]&password=[password] >into replace or delete contexts or forms or urls unless there were fields >in the database with exactly the same names.If your database has no fields named username/password, then WebCatalog does not 'protect' it in any way. Remote users can $Add, $Replace, $Delete, etc. unless you turn on CommandSecurity to prevent anonymous commands.So I still don't understand why your databases seem to be refusing the changes based on embedded contexts, unless you're hiding those contexts inside some kind of password-based hideif.Grant Hulbert, V.P. Engineering | ===== Tools for WebWarriors ===== Pacific Coast Software | WebCatalog Pro, WebCommerce Solution 11770 Bernardo Plaza Court | SiteEdit Pro, SiteCheck, PhotoMaster San Diego, CA 92128 | SiteGuard 619/675-1106 Fax: 619/675-0372 | http://www.smithmicro.com Grant Hulbert

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Reminder for beta testers (2000) [WebDNA] [announce] WebDNA 6.2.1x (2012) New Site Announcement (1998) retain raw [cart] submitted value (2004) Wanted: Broader string manipulation functions (1997) Listfiles and nothing found (2001) AOL and referrers on target=_blank (2000) Secure server question (1997) RE: WebCatalog NT beta 18 now available (1997) WebCat2 - [format thousands] (1997) Just Testing (1997) Help needed! (SIMS recommendation) (1998) [WebDNA] Search Question (2009) Nested tags count question (1997) Getting total number of items ordered (1997) [date format] w/in sendmail (1997) WebCatalogCtl (2003) WebCatalog NT beta 18 now available (1997) AUTONUMBER (2003) Sort Order on a page search (1997)