|
Training, Open Source Computer Languages |
| Home | Accessibility | Courses | Diary | The Mouth | Forum | Resources | Site Map | About Us | Contact |
|
Searching security holes
You'll see from my post earlier this morning that I've added some "Out and about in Wiltshire" pages to our shared data system (Also known as a "wiki") on this site. And, I thought, "what better opportunity than to extend our site's search engine to include the database of information in that system?" But wait. Our shared data system includes not only "public editable" and "public facing" pages, but also pages that are marked "internal only" and are only readable by members of the Well House Consultants team. A search engine that would simply search the database for the desired term wouldn't be sufficient - the search system is another door (a back door) to the data and it needs to be (and has been) secured as appropriate. Why am I posting this "tip"? Because it's something that authors of search facilities often overlook; I know of various web resources which aren't directly accessible to me, but which I can retrieve information from through search facilities without (or with poor) security. Often, I'll let the web site owner know they've got a problem if I find one of these ... but I do have the feeling that some folks aren't all that concerned about their security. Certainly the holes often remain. (written 2005-04-04, updated 2006-06-05) Associated topics are indexed under A163 - Web Application Deployment - Network Configuration and Security[3448] Checking all the systems on a subnet, using Expect and Tk - (2011-09-18) [2489] Parallel Pinging, using Python Threads or Expect spawn lists - (2009-11-02) [2052] How was my web site compromised? - (2009-02-24) [1904] Ruby, Perl, Linux, MySQL - some training notes - (2008-11-23) [1712] As different as night and tyres - (2008-07-18) [1666] Slow boot and terminal start on Linux boxes - (2008-06-05) [1408] Wireless hotel tips - FTP and Skype connections failing - (2007-10-26) [1073] Heartbeat script in Perl - (2007-02-09) [511] Domain Forwarding - 2 ways of doing it - (2005-11-29) [506] What are DHCP and DNS? - (2005-11-27) [332] Looking up IP addresses - (2005-06-01) [37] Security and Safety - (2004-09-03) [11] A bolt of lightning on Multicasting - (2004-08-11)
Some other Articles
Different course every dayNULL in MySQL Free parking for short errands in Melksham Information request forms, cleaning up spam Searching security holes A beautiful place to live and learn Business practise, 2005 style 100% Training Harmony A little bit of fun - the new Perl Quiz |
3597 posts, page by page
Link to page ... 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72 at 50 posts per pageThis is a page archived from The Horse's Mouth at http://www.wellho.net/horse/ - the diary and writings of Graham Ellis. Every attempt was made to provide current information at the time the page was written, but things do move forward in our business - new software releases, price changes, new techniques. Please check back via our main site for current courses, prices, versions, etc - any mention of a price in "The Horse's Mouth" cannot be taken as an offer to supply at that price.
Link to Ezine home page (for reading).
Link to Blogging home page (to add comments).
PH: 01144 1225 708225 • FAX: 01144 1225 899360 • EMAIL: info@wellho.net • WEB: http://www.wellho.net • SKYPE: wellho
PAGE: http://www.wellho.net/mouth/267_Sear ... holes.html • PAGE BUILT: Fri Feb 3 14:16:04 2012 • BUILD SYSTEM: wizard