₦airaland Forum

@ Seun

I managed to visit the site. Thank you for the link.

At this junction, you need to be very specific about the type of security you are looking for on your web page. As others have said, there are various security issues affecting the internet. If you are looking for all, then believe me you gotta have to be prepared to pay millions to security expert (naira though).

World leading internet companies are still struggling with all security issues. Google, Yahoo, facebook, Microsoft, etc still pay millions to get their a** secured.

Kindly be specific and we will proffer possible solutions.

The Internet was designed without considering all related security matters. Every fix we have today is regarded as an addon.

- nitation

@ Yawa

Maybe I use an advanced web crawler??

@Poster

Please don't feed us with stuff you do not understand. If you are here to count your number of posts, then say it.

100% Irrelevant.

- nitation

People have ways of bypassing watermarks. Like in photoshop, you can use the clone tool. There are sophisticated tools out there that can be used.

my 2 cent

- nitation

@Yawa

I am thinking of starting a recruitment agency in Lag. Hurry while offer last.

- nitation

Thanks Yawa. Didn't realise that

lol

@Tech Pros

I observed you quoted my post. Was my explanation wrong?? Please kindly advice.

-nitation

@ poster

First of all, I cannot see anywhere you are checking for your submit button in this your code. You need something like this at the top of your page

if(isset($_POST['submit_button_name']))
{
// Basical validation, select, insert, update, etc comes in here
}

Moreso, all your codes rely on register_global. This was a feature removed from PHP as of version 4.2. You need to go back to www.php.net to read all about that. We are no longer gonna have register_globals in PHP6. Happy Easter


Also, your <?=$php_self ?> should be the name of the file itself. $_SERVER['PHP_SELF'] is subject to attack. Name your file the actual page name. eg, <form action="nitation.php" method="post"></form>, etc


We are here to learn. Anyone offerring better solution should come forth.

-nitation

@segsalerty

What if you get a PHP script, would you like that?

Big boys! ok am sorry. i still fall in the category of the small ones. No vex for me abeg.

Cheers!

Brov, since the guy didn't specify he's referring to basic website. He only said our requirement and that I have provided. Any wrong in doing that

Yea am back after a long weekend.

@DHTML

Predictability

Let us imagine for a second that your site has attracted the attention of a Bad Person. This Bad Person wants to break in to your administration area, and change all of your product descriptions to "This Product Sucks". I would hazard a guess that their first step will be to go to http://www.yoursite.com/admin/ - just in case it exists. Placing your sensitive files and folders somewhere predictable like that makes life for potential soilers that little bit easier.

With this in mind, make sure you name your sensitive files and folders so that they are tough to guess. Placing your admin area at http://www.yoursite.com/jsfh8sfsifuhsi8392/ might make it harder to just type in quickly, but it adds an extra layer of security to your site. Pick something memorable by all means if you need an address you can remember quickly, but don't pick "admin" or "administration" (or your username or password). Pick something unusual.

I sincerely believe you haven't soiled before for whichever reason. No offense though. A potential hacker would first of all scan your IP before laying any attack. He/she would do this to record any open ports available on your system (site).

The attacker would crawl for website for all available files/folders directories etcetera. So there wouldn't be a need to manually type folder names to the url for name guessing.

Lastly, I would strongly advice you to teach your "students" about hashes. MD5- salting etc.

Again folks, welcome back ~

-nitation

Yea am back after a long weekend.

@ poster

We want an auction website like ebay. The website must also allow free email signup like gmail. We are also considering a search engine feature that must function better than google. In our store, we are looking for an online store like Amazon, in fact, bigger than Amazon.

Quote us on that and we are ready to make payment immediately since we will get our job in 24hrs.

Thank you

@DHTML

Please voice out as I don't think anything will shock us no more.

@Dhtml

I just thought the DR title is due to you. Anyway, I will watch how I address you from now on.

@Ztyle

I am not gonna initiate anyone with anything. When you ask, you shall receive!

@ Yawa

e-chaperon in deed. Madam Yawa, when are we coming to Potiskum.

my 2 cent

@ ZTYLE

Stop speaking for everyone. if you have a contract with the Nigerian Railway service to upgrade their windows 3x to 95, that doesn't mean some of us have/had a job. hehehehehe

my 2 cent

I can see you have researched me. I am nitation. I am not by any means affiliated to whoever. I do my thang and enjoy it. Altavista me maybe more result may come out straight.

Ztyle, I am coming to get you. I can see your computer is shaking now.
hhehehehehehehe


DR DHTML, warn your student. tell him/her am a VIRUS

I will allow the peeps who recognizes NITATION to speak for him. Little do you know about me. A friend of would say "The more we communicate, the more reason for you to know me better"

I am Nitation, the son of the soil. I have three chips in my wallet anyone care to share!!!

heheheheheh, the rain is shinning like a star!!

I was chatting with a friend not long ago and he said, "Nitation do you know marquee tag was outdated in 1999"?

Do you guys think

I think you need to add more tables because nitation is not willing to take it slightly

Lol

@DHTML

I think your love for javascript will force the wall of Jericho to collapse one day. You have helped developers on dynamic drive to edit their post and they honoured you wholeheartedly. That's a stale news, as we have read it on NL times without number.

Prof, my youngest advice for you would be to secure your program "serverly" rather than " cliently". Take a look at this.

You have developed a registration form using HTML and javascript for validation. An attacker could solely bypass your authentication and pose treat to your client-based application without your approval . Funny right?? lol. Please don't even ask me how to go about it, IT IS 100% possible!

Javascript shouldn't be our path. Not that it's a crime, but security wise.

@ yawa

Kindly invite DHTML for an e-DRINK and explain in detail

Am out -->
- exiting before the rain pours!!!

Nitation ~~

Thanks olu

@josek

You need to be more specific about the type of software you are developing. Also, weigh your choices and decide on which way to follow.

You may end up choosing from the following:

Java
C#
C
C++
VB.NET
PHP/MYSQL -> the obvious

etc

My 2 cent

@ poster

This is an advice. There are so many criteria that most be considered prior to buying a host from any company. I strongly think the price comes last. You can get a very large hosting space for as low as 5k. But what is the uptime?? How reliable is the company? When it comes to your data (files) how secured are they? Which reliable company can testify to their services? and how long have they been in operation (experience wise: although, not too necessary).

If you can answer this question justly. Then you can be ready to choose your preferred domain name.

My 2 cent

@ Poster

This problem occurs when you are not uploading to the specific folder on your server. Secondly, There is a cache handling error from your hosting company. Consult them and hear their story!

My 2 cent

@ yawa

Thats very funny. At first, i didn't realize the 'ding-dong' forgetting that I muted my sound. I almost ran out of my office thinking it was an Eclipse!!!

lol

Designing websites in flash is not a crime as we all know, but the setbacks gives headache to me every time I think about it. You might wanna learn from my experience as I usually develop animations using GIF animation on fireworks or flash. In the case of flash, I always convert all .swf to .gif/jpg. I have not seen any free product of that without a watermark though.

If you need such softwares, let me know and I will supply you links.

My 2 cent

Thank you. At least I have learnt something and I really appreciate your contribution.

kudos

Amen. We waiting for the class.

@ paule

Even John the ripper never use the word, GOOD IN ALL. You think say security na mouth! Send us your project and give us the right to evaluate it.

Later