Re: Major Security Hole (solution with Welcome)

This WebDNA talk-list message is from

1998


It keeps the original formatting.
numero = 18835
interpreted = N
texte = >Or ask Andreas Pardeike if you can set up his Welcome Plugin to check the >special URL. Could work if you run WebStar and no additional multi-domain >software. >http://welcome.comcon.de >email: pardeike@comcon.deThis is old information. Use these instead, both are redirected to the most current addresses:http://www.kagi.com/pardeike/ pardeike@bigfoot.comBTW: Welcome CAN be used with other virtual hosting software (e.g. the VH plugin of WebSTAR). You can even MIX multihoming and Welcomes virtual hosting or just use Welcome's Rule feature.The fix for the Major Security Hole is to use that Rule:Rule Major Security Hole fix ------------------------------ Path: *::$DATA* Condition: Rule Result: NEVER_TOUCH_THIS Mode: Authorization ------------------------------That's it. It will simply block ANY url, that contains ::$DATA------------------------------------------------------- Andreas Pardeike, Reference Interactive Arb +46-8-406 60 54 http://www.reference.se Hem +46-8-580 38780 http://welcome.digitalfarmers.com Associated Messages, from the most recent to the oldest:

    
  1. Re: Major Security Hole (solution with Welcome) (Andreas Pardeike 1998)
  2. Re: Major Security Hole (solution with Welcome) (Peter Ostry 1998)
  3. Re: Major Security Hole (solution with Welcome) (Andreas Pardeike 1998)
>Or ask Andreas Pardeike if you can set up his Welcome Plugin to check the >special URL. Could work if you run WebStar and no additional multi-domain >software. >http://welcome.comcon.de >email: pardeike@comcon.deThis is old information. Use these instead, both are redirected to the most current addresses:http://www.kagi.com/pardeike/ pardeike@bigfoot.comBTW: Welcome CAN be used with other virtual hosting software (e.g. the VH plugin of WebSTAR). You can even MIX multihoming and Welcomes virtual hosting or just use Welcome's Rule feature.The fix for the Major Security Hole is to use that Rule:Rule Major Security Hole fix ------------------------------ Path: *::$DATA* Condition: Rule Result: NEVER_TOUCH_THIS Mode: Authorization ------------------------------That's it. It will simply block ANY url, that contains ::$DATA------------------------------------------------------- Andreas Pardeike, Reference Interactive Arb +46-8-406 60 54 http://www.reference.se Hem +46-8-580 38780 http://welcome.digitalfarmers.com Andreas Pardeike

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Version 4? (2000) [WebDNA] authorize.net / payeezy FirstData (2019) simple answer? [hideif] (1997) Location of Browser Info.txt file (1997) tricky embedded[showifs/hideifs] (w/ code.. long) (2000) using showpage and showcart commands (1996) Queertrons? (1997) [WebDNA] limit found per row (2011) Nested tags count question (1997) Whats going on with my SERIAL NUMBER??? (1998) Sorting by date (1997) WebCat Beta NT 18 (1997) [WriteFile] problems (1997) List Archives (2000) Unix line endings (2003) Public beta 2 for WebCatalog 4.0 is now available. (2000) Summing fields (1997) EIMS Problems (1997) How to find 100 most recent additions. (1997) [addlineitems] display (1997)