Re: Have I created a security risk? — PHP Language

You are here: Re: Have I created a security risk? « PHP Language « IT news, forums, messages

Posted by Marnok.com on 01/22/08 09:04

"Jonas Werres" <jonas@example.org> wrote in message
news:47947bcc$0$25373$9b4e6d93@newsspool4.arcor-online.net...
>> Person or persons unknown keep calling the go_qwerty.php and putting full
>> URLs as the ?page reference. These pages are from a variety of sites but
>> always refer to an identical looking page:
>
> This special attack should not apply.
> First thing that comes to my mind is, that page=@example.org might be
> usable
> to direct to another server, which could be used for fishing etc.

I'll check and make sure this can't happen. I am sure I can reduce possible
legal values and deflect the evil-doers!

Navigation:

Next in forum: Re: most efficient XML parser for PHP
Prev in forum: Re: Have I created a security risk?
Thread view: Re: Have I created a security risk?

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация