numero = 115088
interpreted = N
texte = 2717 --Apple-Mail=_31622E4A-B54D-4216-8584-7D7199C187A7 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Good on you. As long as WSC doesn=E2=80=99t munge the old commerce tags = / contexts (no guarantees that they are not already messed with), you = should=20 be good for awhile. That old commerce system is one of the main reasons = why I (and many) fell in love with WebDNA=E2=80=A6 but it hasn=E2=80=99t = been improved on nor supported since 2012 or so. Donovan > On Apr 14, 2020, at 11:59 AM, talk@webdna.us wrote: >=20 > It=E2=80=99s actually the oldest running eShop for computer hardware = in Israel launched in 1997 with WebCatalog on Mac OS (PowerPC) > and 2-3 years ago moved to CentOS and WebDNA enterprise. > The WebDNA runs great will all the ^ and all the other weird stuff and = the site is super solid and fast for decades > And also new code is added all the time for the last 22 years and now = this issue also solved >=20 > No reason to change nothing. Same URLs for 22 years is something = Google adore. >=20 > Yours, >=20 > Yariv >=20 >=20 >> On 14 Apr 2020, at 12:19, talk@webdna.us wrote: >>=20 >> As far as I know the old (but awesome) e-commerce system is no longer = supported.=20 >>=20 >> Every commerce context for that old e-commerce system (orderfile, = addlitems, etc) had path parameter options... (so, for example = =E2=80=98file=3D^=E2=80=99). >>=20 >> =E2=80=98^=E2=80=99 symbol is the path to the globals directory. = (Which is also, I believe, said to be unsupported)=20 >>=20 >> I=E2=80=99d suggest finding a new solution.. but if you are sticking = with ancient technology, find a copy of the older docs. Good luck=20 >>=20 >>=20 >>=20 >> D. Brooke Mobile >>=20 >>> On Apr 14, 2020, at 2:55 AM, talk@webdna.us wrote: >>>=20 >>> =EF=BB=BFA security friend told me about "path traversal=E2=80=9D=20 >>> https://portswigger.net/web-security/file-path-traversal >>>=20 >>> and told me that the idea that the =E2=80=9CShoppingCarts=E2=80=9D = folder is located usually under a website folder is not a good practice. >>> How do i move the creation of files from the directory under the = website forlder to be under the Globals so it=E2=80=99ll be protected = from such kind of attack ? >>>=20 >>> I made such directory elsewhere but didn=E2=80=99t know how to make = WebDNA use it ? >>>=20 >>> I use CentOS 7 and=20 >>>=20 >>> Yours, >>>=20 >>> Yariv--------------------------------------------------------- >>> This message is sent to you because you are subscribed to >>> the mailing list talk@webdna.us >>> To unsubscribe, E-mail to: talk-leave@webdna.us >>> archives: http://www.webdna.us/page.dna?numero=3D55 >>> Bug Reporting: support@webdna.us >>=20 >> --------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list talk@webdna.us >> To unsubscribe, E-mail to: talk-leave@webdna.us >> archives: http://www.webdna.us/page.dna?numero=3D55 >> Bug Reporting: support@webdna.us >=20 > --------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list talk@webdna.us > To unsubscribe, E-mail to: talk-leave@webdna.us > archives: http://www.webdna.us/page.dna?numero=3D55 > Bug Reporting: support@webdna.us Donovan Brooke Owner - EUCA (608) 770-3822 355 E State St. APT 8 Iola, WI 54945 --Apple-Mail=_31622E4A-B54D-4216-8584-7D7199C187A7 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 Good = on you. As long as WSC doesn=E2=80=99t munge the old commerce tags / = contexts (no guarantees that they are not already messed with), you = should
be good for awhile. That old commerce system = is one of the main reasons why I (and many) fell in love with WebDNA=E2=80= =A6 but it hasn=E2=80=99t been improved on nor supported since 2012 or = so.
It=E2=80=99s actually the oldest running eShop for computer = hardware in Israel launched in 1997 with WebCatalog on Mac OS = (PowerPC) and 2-3 years ago moved to CentOS and WebDNA = enterprise. The WebDNA runs great will all the ^ and all = the other weird stuff and the site is super solid and fast for = decades And also new code is added all the time for the = last 22 years and now this issue also solved
No reason to change nothing. Same URLs for 22 years is = something Google adore.
As far as I know the old (but = awesome) e-commerce system is no longer supported.
Every commerce context for that old e-commerce system = (orderfile, addlitems, etc) had path parameter options... (so, for = example =E2=80=98file=3D^=E2=80=99).
=E2=80=98= ^=E2=80=99 symbol is the path to the globals directory. (Which is also, = I believe, said to be unsupported)
I=E2=80=99= d suggest finding a new solution.. but if you are sticking with ancient = technology, find a copy of the older docs. Good luck
=EF=BB=BF= A security friend told me about "path traversal=E2=80=9D https://portswigger.net/web-security/file-path-traversal and told me that the idea that the = =E2=80=9CShoppingCarts=E2=80=9D folder is located usually under a = website folder is not a good practice. How do i move the = creation of files from the directory under the website forlder to be = under the Globals so it=E2=80=99ll be protected from such kind of attack = ?
I made such directory elsewhere but = didn=E2=80=99t know how to make WebDNA use it ?
I use CentOS 7 and
Yours,
Yariv---------------------------------------------------------<= br class=3D"">This message is sent to you because you are subscribed = to the mailing list talk@webdna.us To = unsubscribe, E-mail to: talk-leave@webdna.us archives: = http://www.webdna.us/page.dna?numero=3D55 Bug Reporting: = support@webdna.us
= --------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list talk@webdna.us To unsubscribe, E-mail to: talk-leave@webdna.us archives: http://www.webdna.us/page.dna?numero=3D55 Bug Reporting: support@webdna.us --Apple-Mail=_31622E4A-B54D-4216-8584-7D7199C187A7-- .
Associated Messages, from the most recent to the oldest:
2717 --Apple-Mail=_31622E4A-B54D-4216-8584-7D7199C187A7 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Good on you. As long as WSC doesn=E2=80=99t munge the old commerce tags = / contexts (no guarantees that they are not already messed with), you = should=20 be good for awhile. That old commerce system is one of the main reasons = why I (and many) fell in love with WebDNA=E2=80=A6 but it hasn=E2=80=99t = been improved on nor supported since 2012 or so. Donovan > On Apr 14, 2020, at 11:59 AM, talk@webdna.us wrote: >=20 > It=E2=80=99s actually the oldest running eShop for computer hardware = in Israel launched in 1997 with WebCatalog on Mac OS (PowerPC) > and 2-3 years ago moved to CentOS and WebDNA enterprise. > The WebDNA runs great will all the ^ and all the other weird stuff and = the site is super solid and fast for decades > And also new code is added all the time for the last 22 years and now = this issue also solved >=20 > No reason to change nothing. Same URLs for 22 years is something = Google adore. >=20 > Yours, >=20 > Yariv >=20 >=20 >> On 14 Apr 2020, at 12:19, talk@webdna.us wrote: >>=20 >> As far as I know the old (but awesome) e-commerce system is no longer = supported.=20 >>=20 >> Every commerce context for that old e-commerce system (orderfile, = addlitems, etc) had path parameter options... (so, for example = =E2=80=98file=3D^=E2=80=99). >>=20 >> =E2=80=98^=E2=80=99 symbol is the path to the globals directory. = (Which is also, I believe, said to be unsupported)=20 >>=20 >> I=E2=80=99d suggest finding a new solution.. but if you are sticking = with ancient technology, find a copy of the older docs. Good luck=20 >>=20 >>=20 >>=20 >> D. Brooke Mobile >>=20 >>> On Apr 14, 2020, at 2:55 AM, talk@webdna.us wrote: >>>=20 >>> =EF=BB=BFA security friend told me about "path traversal=E2=80=9D=20 >>> https://portswigger.net/web-security/file-path-traversal >>>=20 >>> and told me that the idea that the =E2=80=9CShoppingCarts=E2=80=9D = folder is located usually under a website folder is not a good practice. >>> How do i move the creation of files from the directory under the = website forlder to be under the Globals so it=E2=80=99ll be protected = from such kind of attack ? >>>=20 >>> I made such directory elsewhere but didn=E2=80=99t know how to make = WebDNA use it ? >>>=20 >>> I use CentOS 7 and=20 >>>=20 >>> Yours, >>>=20 >>> Yariv--------------------------------------------------------- >>> This message is sent to you because you are subscribed to >>> the mailing list talk@webdna.us >>> To unsubscribe, E-mail to: talk-leave@webdna.us >>> archives: http://www.webdna.us/page.dna?numero=3D55 >>> Bug Reporting: support@webdna.us >>=20 >> --------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list talk@webdna.us >> To unsubscribe, E-mail to: talk-leave@webdna.us >> archives: http://www.webdna.us/page.dna?numero=3D55 >> Bug Reporting: support@webdna.us >=20 > --------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list talk@webdna.us > To unsubscribe, E-mail to: talk-leave@webdna.us > archives: http://www.webdna.us/page.dna?numero=3D55 > Bug Reporting: support@webdna.us Donovan Brooke Owner - EUCA (608) 770-3822 355 E State St. APT 8 Iola, WI 54945 --Apple-Mail=_31622E4A-B54D-4216-8584-7D7199C187A7 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 Good = on you. As long as WSC doesn=E2=80=99t munge the old commerce tags / = contexts (no guarantees that they are not already messed with), you = should
be good for awhile. That old commerce system = is one of the main reasons why I (and many) fell in love with WebDNA=E2=80= =A6 but it hasn=E2=80=99t been improved on nor supported since 2012 or = so.
It=E2=80=99s actually the oldest running eShop for computer = hardware in Israel launched in 1997 with WebCatalog on Mac OS = (PowerPC) and 2-3 years ago moved to CentOS and WebDNA = enterprise. The WebDNA runs great will all the ^ and all = the other weird stuff and the site is super solid and fast for = decades And also new code is added all the time for the = last 22 years and now this issue also solved
No reason to change nothing. Same URLs for 22 years is = something Google adore.
As far as I know the old (but = awesome) e-commerce system is no longer supported.
Every commerce context for that old e-commerce system = (orderfile, addlitems, etc) had path parameter options... (so, for = example =E2=80=98file=3D^=E2=80=99).
=E2=80=98= ^=E2=80=99 symbol is the path to the globals directory. (Which is also, = I believe, said to be unsupported)
I=E2=80=99= d suggest finding a new solution.. but if you are sticking with ancient = technology, find a copy of the older docs. Good luck
=EF=BB=BF= A security friend told me about "path traversal=E2=80=9D https://portswigger.net/web-security/file-path-traversal and told me that the idea that the = =E2=80=9CShoppingCarts=E2=80=9D folder is located usually under a = website folder is not a good practice. How do i move the = creation of files from the directory under the website forlder to be = under the Globals so it=E2=80=99ll be protected from such kind of attack = ?
I made such directory elsewhere but = didn=E2=80=99t know how to make WebDNA use it ?
I use CentOS 7 and
Yours,
Yariv---------------------------------------------------------<= br class=3D"">This message is sent to you because you are subscribed = to the mailing list talk@webdna.us To = unsubscribe, E-mail to: talk-leave@webdna.us archives: = http://www.webdna.us/page.dna?numero=3D55 Bug Reporting: = support@webdna.us
= --------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list talk@webdna.us To unsubscribe, E-mail to: talk-leave@webdna.us archives: http://www.webdna.us/page.dna?numero=3D55 Bug Reporting: support@webdna.us --Apple-Mail=_31622E4A-B54D-4216-8584-7D7199C187A7-- .
Donovan Brooke
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...