Re: Permissions Ignored - PLEASE HELP
This WebDNA talk-list message is from 2003
It keeps the original formatting.
numero = 47058
interpreted = N
texte = Kimberly D. Walls wrote:>[snip] Is this adequate>protection?>It sounds like you might be using some storebuilder guts. If it is working O.K., it sounds likeit has good protection. I imagine the orders.db carries the credit card info.> Is there anything else I should do? I don't quite understand>what you mean by setting up the web identity based on the IP address. My>client doesn't have a static IP,>If you wanted to, you could only allow a specific IP *range* to the admin pages but I don'tthink it's necessary. As long as one can't link straight to the database with the credit card info,accessing it through SSL and with a user/pass should be sufficient (perhaps, only when thereis an appropriate flag (within the link) is there information given.... again, probably not necessary.)Donovan> and even so, would like to access the order>information from various locations, due to his extensive traveling.>>> >-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list
.To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
Associated Messages, from the most recent to the oldest:
Kimberly D. Walls wrote:>[snip] Is this adequate>protection?>It sounds like you might be using some storebuilder guts. If it is working O.K., it sounds likeit has good protection. I imagine the orders.db carries the credit card info.> Is there anything else I should do? I don't quite understand>what you mean by setting up the web identity based on the IP address. My>client doesn't have a static IP,>If you wanted to, you could only allow a specific IP *range* to the admin pages but I don'tthink it's necessary. As long as one can't link straight to the database with the credit card info,accessing it through SSL and with a user/pass should be sufficient (perhaps, only when thereis an appropriate flag (within the link) is there information given.... again, probably not necessary.)Donovan> and even so, would like to access the order>information from various locations, due to his extensive traveling.>>> >-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
Donovan
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
Pithy questions on webcommerce & siteedit (1997)
[Announce] WebCatalog 2.1 Released (1998)
WebCat2 beta 11 - new prefs ... (1997)
Associative lookup style? (1997)
Emailer (1997)
Searching for a search solution (2000)
[delete] problem (1997)
[WebDNA] [redirect] include a value to pass along? (2010)
GoLive CyberStudio 1.0.1 (1997)
Passing Variable (was How to add product size) (1997)
RAM variables (1997)
syntax question, not in online refernce (1997)
WebCat2 - Getting to the browser's username/password data (1997)
Showing unopened cart (1997)
Re:Realtime Transaction Processing (1999)
Running _every_ page through WebCat-error.html (1997)
suggestions for a Windows based text editor? (2004)
show all problem (1997)
Requiring that certain fields be completed (1997)
Request for help on a new *automated* WebCatalog function ... (1998)