Haisoft
08-10-2001, 04:00 PM
I have got a raq4 server and one of my customers has just shown me that using asp he can add pages to any directory on the server ! What can I do about it? is it possible to only allow them to add files in their own directory and not every one elses?
Does it mean that I can't allow my customers to use asp, please help!!!
Also, I'm new to telnet and mysql. I have just installed mysql and phpmyadmin thanks to a few people on this forum! But I'm not sure about the security though. I'm just using advanced auth. and I have got config.inc.php on chmod660 but you can still download it and then see the root password. What is the best solution to avoid this. If I use .httaccess will I have to add users to a password list? this would be a bore. I don't know how to set up a .httaccess so could someone please tel me step by step how to do so
Richard Hordern,
Haisoft
Does it mean that I can't allow my customers to use asp, please help!!!
Also, I'm new to telnet and mysql. I have just installed mysql and phpmyadmin thanks to a few people on this forum! But I'm not sure about the security though. I'm just using advanced auth. and I have got config.inc.php on chmod660 but you can still download it and then see the root password. What is the best solution to avoid this. If I use .httaccess will I have to add users to a password list? this would be a bore. I don't know how to set up a .httaccess so could someone please tel me step by step how to do so
Richard Hordern,
Haisoft