Re: Permissions Ignored - PLEASE HELP
This WebDNA talk-list message is from 2003
It keeps the original formatting.
numero = 47058
interpreted = N
texte = Kimberly D. Walls wrote:>[snip] Is this adequate>protection?>It sounds like you might be using some storebuilder guts. If it is working O.K., it sounds likeit has good protection. I imagine the orders.db carries the credit card info.> Is there anything else I should do? I don't quite understand>what you mean by setting up the web identity based on the IP address. My>client doesn't have a static IP,>If you wanted to, you could only allow a specific IP *range* to the admin pages but I don'tthink it's necessary. As long as one can't link straight to the database with the credit card info,accessing it through SSL and with a user/pass should be sufficient (perhaps, only when thereis an appropriate flag (within the link) is there information given.... again, probably not necessary.)Donovan> and even so, would like to access the order>information from various locations, due to his extensive traveling.>>> >-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list
.To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
Associated Messages, from the most recent to the oldest:
Kimberly D. Walls wrote:>[snip] Is this adequate>protection?>It sounds like you might be using some storebuilder guts. If it is working O.K., it sounds likeit has good protection. I imagine the orders.db carries the credit card info.> Is there anything else I should do? I don't quite understand>what you mean by setting up the web identity based on the IP address. My>client doesn't have a static IP,>If you wanted to, you could only allow a specific IP *range* to the admin pages but I don'tthink it's necessary. As long as one can't link straight to the database with the credit card info,accessing it through SSL and with a user/pass should be sufficient (perhaps, only when thereis an appropriate flag (within the link) is there information given.... again, probably not necessary.)Donovan> and even so, would like to access the order>information from various locations, due to his extensive traveling.>>> >-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
Donovan
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
I give up!! (1997)
variable value locked when passed to include (2001)
Is there an easier way? (1998)
WebCat2 beta 11 - new prefs ... (1997)
Nested vs conditional (1997)
is [Bankres] an internal webcat variable? (1999)
Mystery File - Solved (2005)
woops - speed results - right subject (2002)
Looking for WebCat web hoster in Chicago/Illinois/Midwest (2000)
WCf2 and nested tags (1997)
[WebDNA] Dates (2009)
textA (1998)
writing db to disk (1997)
Repeating Fields (1997)
Replace/Commit not Replacing/Commiting (2000)
Slow Server (2005)
Root Folder problems cont. (1998)
WebTen and WebCat (1997)
[CART] inside a [LOOP] (1997)
Hello??? (1997)