Gossamer Forum: Products: Links 2.0: Customization: SSI headers & footers: Page 2

Sep 4, 2001, 12:03 PM

Paul

Veteran (19537 posts)

Sep 4, 2001, 12:03 PM

Post #26 of 29

Shortcut

Re: SSI headers & footers In reply to

Not meaning to sound arrogant but I still think my version is better.

Yes encrypting the file name is more secure as you can't enter includer.cgi?anyfile due to the decryption, but there are ways to get around it whereas with my version it forces only certain files types to be shown no matter what. So even if a hacker knew the location of my secret files he couldn't get at them.

Mods:http://wiredon.net/gt/download.shtml
Installations:http://wiredon.net/gt/

Sep 4, 2001, 12:06 PM

Paul

Veteran (19537 posts)

Sep 4, 2001, 12:06 PM

Post #27 of 29

Shortcut

Re: SSI headers & footers In reply to

You could make it more secure by only allowing the script to show files within a specific directory (or the current directory) using:

Code:

&error("HACKER!") unless ($inc =~ /^\w+\.\w+$/);

Mods:http://wiredon.net/gt/download.shtml
Installations:http://wiredon.net/gt/

Sep 4, 2001, 12:22 PM

StumpedBigTime

Novice (12 posts)

Sep 4, 2001, 12:22 PM

Post #28 of 29

Shortcut

Re: SSI headers & footers In reply to

Are you serious??? I seen the "HACKER" thing in there, and I thought you were just rubbin it in on my "Non CGI" butt.. Smile

Why H%LL ya I'll use yours! Thanks!!

BTW, why didn't you just include this in your posts when people were having problems??? hehe.. j/k.

Thanks a lot man..

UN Stumped! (for now)

Sep 4, 2001, 12:27 PM

Paul

Veteran (19537 posts)

Sep 4, 2001, 12:27 PM

Post #29 of 29

Shortcut

Re: SSI headers & footers In reply to

Let me know if it works or if you have problems....it was a two minute job that way have the odd error in it.

Mods:http://wiredon.net/gt/download.shtml
Installations:http://wiredon.net/gt/

SSI headers & footers

(Page 2 of 2)