Ever Wondered - X Nations
      
      
Main Forum Resources Arcade Search Today's Posts Mark Forums Read
Go Back   X Nations > X Nations > General Webmaster Business and Discussions
Reload this Page Ever Wondered

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
Old 09-21-2003, 04:21 AM   #5
wsjb78
wsjb78 should edit this
Local Shadow Agent #1
 
wsjb78's Avatar
 
Join Date: Nov 2002
Location: Home
Posts: 1,061
xBucks: 20,251
Default
Well, poor programming of websites...

e.g. a users uses php and mysql to access the db. He then writes username and pwd into a php script of config file... however he does not put that file outside the webroot....

Now PHP fails and you can see username and pwd in plain text for the db... once you have that info you can try to connect to the db. I'm pretty sure when that guy doesn't even move the config file outside the webroot then he has a global root user to mysql which he lets to connect from everywhere... if so then probably the same guy does not encrypt user pwds which are stored.... or the hacker just inserts a new user there

That means you can easily get those things... I've seen that a couple of times where PHP has been failing... on a server.....

This is just a simple way of getting acces...
wsjb78 is offline   Reply With Quote
 

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Threaded Mode Threaded Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Forum Jump

X Nations Adult Webmasters - Archive - Top
Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.
vBCredits v1.4 Copyright ©2007 - 2008, PixelFX Studios
2013 - xnations.com
All times are GMT -4. The time now is 10:45 AM.
Skin by vBCore.com