Care to help me find a way to break into my own code? (security hardening)
You won't be able to run the actual code without my PHP object classes so I am interested in a theoretical break in and not in live testing.
I won't hold anyone responsible for the consequences of breaking into my own code. The code below is not at my site at present (it's not even close).
I am trying to ultra-simplify my code while not sacrificing it's secureness.
if ($_SERVER['REQUEST_METHOD'] == 'GET') { require $_SERVER['DOCUMENT_ROOT']."/autoload.php"; $global = new globals(); $page = new webPage(); $category = $_GET['category']; $page->setNavigation($global->getNavigationFor($category)); $page->setCopyright($global->getCopyright()); $fileName = $category.$_GET['page'].".txt"; if (file_exists($fileName)) $page->show($fileName); else $page->show($page->getDefaultErrorPage()); }
Thanks.
Carlos
-
Tim Brownlaw -
Thanks - 1 reply
{{ DiscussionBoard.errors[1247236].message }}-
carlos123 -
Thanks - 1 reply
{{ DiscussionBoard.errors[1247326].message }}-
Tim Brownlaw -
Thanks - 1 reply
{{ DiscussionBoard.errors[1247418].message }}-
carlos123 -
Thanks
{{ DiscussionBoard.errors[1247422].message }} -
-
-
-