Re: [BULK] RE: [WebDNA] [BULK] Should I be worried about this web
This WebDNA talk-list message is from
2017
It keeps the original formatting.
numero = 113524
interpreted = N
texte = 1119 --Apple-Mail=_07741692-60A0-40D7-A14C-A0E7FE474113 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 > Makes me wonder if we should be doing the same with our WebDNA admin = logins as well? >=20 Yes we should. There is already a recent thread on the list about = securing the WebDNA/WebCatalog /admin directory. With SNI compliancy as = high as it is in browsers today, it's hard to argue that running an http = virtual for your site is worth the risk. Now, if it weren't so = difficult to work a Varnish cache into an SSL site... A little Pound = will do it, but it ain't pretty. On my recent site projects I'm running a standard http port 80 catch-all = virtual that uses mod_rewrite to redirect to the https version of the = site. MD > On Mar 28, 2017, at 9:12 PM, WJ Starck, DDS wrote: >=20 > Michael- >=20 > No, I saw that as well.=20 >=20 > I think I should probably use be using SSL anyways. >=20 > http://stackoverflow.com/questions/1008668/how-secure-is-a-http-post = >=20 > Makes me wonder if we should be doing the same with our WebDNA admin = logins as well? >=20 > Stuart - credentials changed, don't tell the Romanians ;) >=20 > William J. Starck, DDS > 760 Keller Smithfield Road > Keller, TX 76248 > 817-800-9634 >=20 >=20 > On Mar 28, 2017, at 10:12 PM, Michael Davis > wrote: >=20 >> Will, do you know who tigerbackbone.com = is? The IP appears to originate in Romania. >>=20 >>=20 >> MD >>=20 >>> On Mar 28, 2017, at 6:29 PM, Stuart Tremain > wrote: >>>=20 >>> I think you should change the credentials. >>>=20 >>> Kind regards >>>=20 >>> Stuart Tremain >>> Pharoah Lane Software >>> AUSTRALIA >>> webdna@idfk.com.au >>>=20 >>>=20 >>>=20 >>>=20 >>>=20 >>>=20 >>>> On 29 Mar 2017, at 12:29, William J. Starck, DDS > wrote: >>>>=20 >>>> Thanks Stuart- >>>> =20 >>>> Yes I put a [protect admin] in there. But couldn=E2=80=99t a bot = just post the username and password to the dialog and still get in? >>>> =20 >>>> I guess if I just change the password in my app I=E2=80=99d be OK? >>>> =20 >>>> Thanks, >>>> =20 >>>> Will >>>> =C2=A0 <> >>>> From: Stuart Tremain [mailto:webdna@idfk.com.au = ]=20 >>>> Sent: Tuesday, March 28, 2017 8:08 PM >>>> To: WebDNA Talk List > >>>> Subject: Re: [WebDNA] [BULK] Should I be worried about this web = traffic? >>>> Importance: Low >>>> =20 >>>> Looks like you have fixed it, I just get UNAUTHORIZED. >>>> =20 >>>> =20 >>>> Kind regards >>>> =20 >>>> Stuart Tremain >>>> Pharoah Lane Software >>>> AUSTRALIA >>>> webdna@idfk.com.au >>>> =20 >>>> =20 >>>> =20 >>>> =20 >>>>=20 >>>> =20 >>>>> On 29 Mar 2017, at 11:52, William J. Starck, DDS > wrote: >>>>> =20 >>>>> Hello- >>>>>=20 >>>>> I have a WebDNA template index.dna that is located at http:// = >>>>> licensing.etherware.com >>>>>=20 >>>>> The template has a [replace] like so: >>>>>=20 >>>>> >>>>>=20 >>>>> This page has data posted to it from one of my Windows Apps along = with the >>>>> IP address of the PC posting the data. >>>>>=20 >>>>> The curious thing is, I keep having blank data (with the exception = of the IP >>>>> address 185.57.81.38) that keeps getting written to my db. I can = hit the >>>>> page with a web browser and nothing happens.=20 >>>>>=20 >>>>> Should I be worried? I am concerned that whatever it is has the = correct >>>>> username and password. I suppose it's possible someone decompiled = my C# app >>>>> to get the username and password. >>>>>=20 >>>>> Here is what the lighttpd log shows: >>>>>=20 >>>>> 185.57.81.38 licensing.etherware.com = - [24/Mar/2017:04:45:20 -0500] "GET >>>>> /index.dna?username=3Dcorrectusername&password=3Dcorrectpassword = HTTP/1.1" 200 >>>>> 406 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; = Trident/6.0)" >>>>>=20 >>>>> What do you guys think? >>>>>=20 >>>>> Will >>>>>=20 >>>>> --------------------------------------------------------- >>>>> This message is sent to you because you are subscribed to >>>>> the mailing list >. >>>>> To unsubscribe, E-mail to: > >>>>> archives: http://mail.webdna.us/list/talk@webdna.us = >>>>> Bug Reporting: support@webdna.us >>>> =20 >>>> --------------------------------------------------------- This = message is sent to you because you are subscribed to the mailing list . = To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us = Bug Reporting: = support@webdna.us = ------------------------------------------------= --------- This message is sent to you because you are subscribed to the = mailing list . To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us = Bug Reporting: = support@webdna.us >>> --------------------------------------------------------- This = message is sent to you because you are subscribed to the mailing list . = To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us = Bug Reporting: = support@webdna.us >> --------------------------------------------------------- This = message is sent to you because you are subscribed to the mailing list . = To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us = Bug Reporting: = support@webdna.us = ------------------------------------------------= --------- This message is sent to you because you are subscribed to the = mailing list . To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us Bug Reporting: = support@webdna.us --Apple-Mail=_07741692-60A0-40D7-A14C-A0E7FE474113 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8
Makes me wonder if we should be doing the = same with our WebDNA admin logins as well?
Yes we should. There is already a recent thread = on the list about securing the WebDNA/WebCatalog /admin directory. = With SNI compliancy as high as it is in browsers today, it's hard = to argue that running an http virtual for your site is worth the risk. = Now, if it weren't so difficult to work a Varnish cache into an = SSL site... A little Pound will do it, but it ain't pretty.
On my recent site = projects I'm running a standard http port 80 catch-all virtual that uses = mod_rewrite to redirect to the https version of the site.
MD
On Mar 28, 2017, at 9:12 PM, WJ = Starck, DDS <wjs@drstarck.com> wrote:
Michael-
No, I saw that as = well.
I = think I should probably use be using SSL anyways.
On 29 Mar 2017, at 12:29, William J. Starck, = DDS <wjs@drstarck.com> wrote:
Thanks Stuart-
Yes I put a [protect admin] in there. But = couldn=E2=80=99t a bot just post the username and password to the dialog = and still get in?
I guess if I just change = the password in my app I=E2=80=99d be OK?
Thanks,
Will
From:Stuart Tremain [mailto:webdna@idfk.com.au] Sent:Tuesday, March 28, 2017 = 8:08 PM To:WebDNA Talk List <talk@webdna.us> Subject:Re: [WebDNA] [BULK] Should = I be worried about this web traffic? Importance:Low
Looks like you have fixed it, I just get UNAUTHORIZED.
<FORM NAME =3D "ODVersionNum" METHOD =3D = "POST" ACTION =3D "http://licensing.etherware.com/index.dna"> [formvariables show=3DT] [name]=3D[value]<BR> <INPUT TYPE =3D = "HIDDEN" NAME =3D "[name]" VALUE =3D "[value]"> [replace db=3D/dbs/licenses.db&eqipaddressdatarq=3D[ipaddress]&a= ppend=3DT&autonumber=3Dindexn um]ipaddress=3D[ipaddress]&[name]=3D[value]&last_report= ed=3D[date][/replace] [/formvariables] </FORM>
This page has data = posted to it from one of my Windows Apps along with the IP = address of the PC posting the data.
The = curious thing is, I keep having blank data (with the exception of the = IP address 185.57.81.38) that keeps getting written to my = db. I can hit the page with a web browser and nothing = happens.
Should I be worried? I am concerned that = whatever it is has the correct username and password. I = suppose it's possible someone decompiled my C# app to get = the username and password.
Here is what the = lighttpd log shows:
185.57.81.38licensing.etherware.com- [24/Mar/2017:04:45:20 = -0500] "GET /index.dna?username=3Dcorrectusername&password=3Dcorrectpas= sword HTTP/1.1" 200 406 "-" "Mozilla/5.0 (compatible; MSIE = 10.0; Windows NT 6.1; Trident/6.0)"
--------------------------------------------------------- = This message is sent to you because you are subscribed to the mailing = list . To unsubscribe, E-mail to: archives:http://mail.webdna.us/list/talk@webdna.usBug Reporting:support@webdna.us
--------------------------------------------------------- = This message is sent to you because you are subscribed to the mailing = list. = To unsubscribe, E-mail to:archives:http://mail.webdna.us/list/talk@webdna.usBug Reporting:support@webdna.us
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
= --------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us --Apple-Mail=_07741692-60A0-40D7-A14C-A0E7FE474113-- .
Associated Messages, from the most recent to the oldest:
Re: [BULK] RE: [WebDNA] [BULK] Should I be worried about this web (Michael Davis 2017)
1119 --Apple-Mail=_07741692-60A0-40D7-A14C-A0E7FE474113 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 > Makes me wonder if we should be doing the same with our WebDNA admin = logins as well? >=20 Yes we should. There is already a recent thread on the list about = securing the WebDNA/WebCatalog /admin directory. With SNI compliancy as = high as it is in browsers today, it's hard to argue that running an http = virtual for your site is worth the risk. Now, if it weren't so = difficult to work a Varnish cache into an SSL site... A little Pound = will do it, but it ain't pretty. On my recent site projects I'm running a standard http port 80 catch-all = virtual that uses mod_rewrite to redirect to the https version of the = site. MD > On Mar 28, 2017, at 9:12 PM, WJ Starck, DDS wrote: >=20 > Michael- >=20 > No, I saw that as well.=20 >=20 > I think I should probably use be using SSL anyways. >=20 > http://stackoverflow.com/questions/1008668/how-secure-is-a-http-post = >=20 > Makes me wonder if we should be doing the same with our WebDNA admin = logins as well? >=20 > Stuart - credentials changed, don't tell the Romanians ;) >=20 > William J. Starck, DDS > 760 Keller Smithfield Road > Keller, TX 76248 > 817-800-9634 >=20 >=20 > On Mar 28, 2017, at 10:12 PM, Michael Davis > wrote: >=20 >> Will, do you know who tigerbackbone.com = is? The IP appears to originate in Romania. >>=20 >>=20 >> MD >>=20 >>> On Mar 28, 2017, at 6:29 PM, Stuart Tremain > wrote: >>>=20 >>> I think you should change the credentials. >>>=20 >>> Kind regards >>>=20 >>> Stuart Tremain >>> Pharoah Lane Software >>> AUSTRALIA >>> webdna@idfk.com.au >>>=20 >>>=20 >>>=20 >>>=20 >>>=20 >>>=20 >>>> On 29 Mar 2017, at 12:29, William J. Starck, DDS > wrote: >>>>=20 >>>> Thanks Stuart- >>>> =20 >>>> Yes I put a [protect admin] in there. But couldn=E2=80=99t a bot = just post the username and password to the dialog and still get in? >>>> =20 >>>> I guess if I just change the password in my app I=E2=80=99d be OK? >>>> =20 >>>> Thanks, >>>> =20 >>>> Will >>>> =C2=A0 <> >>>> From: Stuart Tremain [mailto:webdna@idfk.com.au = ]=20 >>>> Sent: Tuesday, March 28, 2017 8:08 PM >>>> To: WebDNA Talk List> >>>> Subject: Re: [WebDNA] [BULK] Should I be worried about this web = traffic? >>>> Importance: Low >>>> =20 >>>> Looks like you have fixed it, I just get UNAUTHORIZED. >>>> =20 >>>> =20 >>>> Kind regards >>>> =20 >>>> Stuart Tremain >>>> Pharoah Lane Software >>>> AUSTRALIA >>>> webdna@idfk.com.au >>>> =20 >>>> =20 >>>> =20 >>>> =20 >>>>=20 >>>> =20 >>>>> On 29 Mar 2017, at 11:52, William J. Starck, DDS > wrote: >>>>> =20 >>>>> Hello- >>>>>=20 >>>>> I have a WebDNA template index.dna that is located at http:// = >>>>> licensing.etherware.com >>>>>=20 >>>>> The template has a [replace] like so: >>>>>=20 >>>>> >>>>>=20 >>>>> This page has data posted to it from one of my Windows Apps along = with the >>>>> IP address of the PC posting the data. >>>>>=20 >>>>> The curious thing is, I keep having blank data (with the exception = of the IP >>>>> address 185.57.81.38) that keeps getting written to my db. I can = hit the >>>>> page with a web browser and nothing happens.=20 >>>>>=20 >>>>> Should I be worried? I am concerned that whatever it is has the = correct >>>>> username and password. I suppose it's possible someone decompiled = my C# app >>>>> to get the username and password. >>>>>=20 >>>>> Here is what the lighttpd log shows: >>>>>=20 >>>>> 185.57.81.38 licensing.etherware.com = - [24/Mar/2017:04:45:20 -0500] "GET >>>>> /index.dna?username=3Dcorrectusername&password=3Dcorrectpassword = HTTP/1.1" 200 >>>>> 406 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; = Trident/6.0)" >>>>>=20 >>>>> What do you guys think? >>>>>=20 >>>>> Will >>>>>=20 >>>>> --------------------------------------------------------- >>>>> This message is sent to you because you are subscribed to >>>>> the mailing list >. >>>>> To unsubscribe, E-mail to: > >>>>> archives: http://mail.webdna.us/list/talk@webdna.us = >>>>> Bug Reporting: support@webdna.us >>>> =20 >>>> --------------------------------------------------------- This = message is sent to you because you are subscribed to the mailing list . = To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us = Bug Reporting: = support@webdna.us = ------------------------------------------------= --------- This message is sent to you because you are subscribed to the = mailing list . To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us = Bug Reporting: = support@webdna.us >>> --------------------------------------------------------- This = message is sent to you because you are subscribed to the mailing list . = To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us = Bug Reporting: = support@webdna.us >> --------------------------------------------------------- This = message is sent to you because you are subscribed to the mailing list . = To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us = Bug Reporting: = support@webdna.us = ------------------------------------------------= --------- This message is sent to you because you are subscribed to the = mailing list . To unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us Bug Reporting: = support@webdna.us --Apple-Mail=_07741692-60A0-40D7-A14C-A0E7FE474113 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8
Makes me wonder if we should be doing the = same with our WebDNA admin logins as well?
Yes we should. There is already a recent thread = on the list about securing the WebDNA/WebCatalog /admin directory. = With SNI compliancy as high as it is in browsers today, it's hard = to argue that running an http virtual for your site is worth the risk. = Now, if it weren't so difficult to work a Varnish cache into an = SSL site... A little Pound will do it, but it ain't pretty.
On my recent site = projects I'm running a standard http port 80 catch-all virtual that uses = mod_rewrite to redirect to the https version of the site.
MD
On Mar 28, 2017, at 9:12 PM, WJ = Starck, DDS <wjs@drstarck.com> wrote:
Michael-
No, I saw that as = well.
I = think I should probably use be using SSL anyways.
On 29 Mar 2017, at 12:29, William J. Starck, = DDS <wjs@drstarck.com> wrote:
Thanks Stuart-
Yes I put a [protect admin] in there. But = couldn=E2=80=99t a bot just post the username and password to the dialog = and still get in?
I guess if I just change = the password in my app I=E2=80=99d be OK?
Thanks,
Will
From:Stuart Tremain [mailto:webdna@idfk.com.au] Sent:Tuesday, March 28, 2017 = 8:08 PM To:WebDNA Talk List <talk@webdna.us> Subject:Re: [WebDNA] [BULK] Should = I be worried about this web traffic? Importance:Low
Looks like you have fixed it, I just get UNAUTHORIZED.
<FORM NAME =3D "ODVersionNum" METHOD =3D = "POST" ACTION =3D "http://licensing.etherware.com/index.dna"> [formvariables show=3DT] [name]=3D[value]<BR> <INPUT TYPE =3D = "HIDDEN" NAME =3D "[name]" VALUE =3D "[value]"> [replace db=3D/dbs/licenses.db&eqipaddressdatarq=3D[ipaddress]&a= ppend=3DT&autonumber=3Dindexn um]ipaddress=3D[ipaddress]&[name]=3D[value]&last_report= ed=3D[date][/replace] [/formvariables] </FORM>
This page has data = posted to it from one of my Windows Apps along with the IP = address of the PC posting the data.
The = curious thing is, I keep having blank data (with the exception of the = IP address 185.57.81.38) that keeps getting written to my = db. I can hit the page with a web browser and nothing = happens.
Should I be worried? I am concerned that = whatever it is has the correct username and password. I = suppose it's possible someone decompiled my C# app to get = the username and password.
Here is what the = lighttpd log shows:
185.57.81.38licensing.etherware.com- [24/Mar/2017:04:45:20 = -0500] "GET /index.dna?username=3Dcorrectusername&password=3Dcorrectpas= sword HTTP/1.1" 200 406 "-" "Mozilla/5.0 (compatible; MSIE = 10.0; Windows NT 6.1; Trident/6.0)"
--------------------------------------------------------- = This message is sent to you because you are subscribed to the mailing = list . To unsubscribe, E-mail to: archives:http://mail.webdna.us/list/talk@webdna.usBug Reporting:support@webdna.us
--------------------------------------------------------- = This message is sent to you because you are subscribed to the mailing = list. = To unsubscribe, E-mail to:archives:http://mail.webdna.us/list/talk@webdna.usBug Reporting:support@webdna.us
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
--------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us
= --------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us --Apple-Mail=_07741692-60A0-40D7-A14C-A0E7FE474113-- .
Michael Davis
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...