GB Flag 01376 55 60 60
Sales & Support
Search
GetDotted Domains

Viewing Thread:
"Error's on PHP"

« Back To Forum Threads

The "Freeola Customer Forum" forum, which includes Retro Game Reviews, has been archived and is now read-only. You cannot post here or create a new thread or review on this forum.

Mon 03/09/01 at 18:52
Webmaster
Regular
Posts: 787
I've noticed that if an Error occurs in a PHP Script, that it prints the Location of the Script in a way that could be a security risk:

/users/freeola/.... you know the rest.

The thing is, when an error occurs, the user can see this clearly, and they have then been given information to access your files. As this is the method of getting to your files through scripts, those type of people could do things like delete files, create loads of new ones, move them, rename then, edit them.....

..So, Andrew, is there anyway that you can change it, so that if an error occurs, the full path to the problem isn't posted???

Thanx for reading....
 
Report
Wed 05/09/01 at 16:03
Bob 2 Bob
Regular
Posts: 612
THanks for replying Turbo. It is completley secure and in any case users shouldn't get any errors if the pages work, which they will if you have finished programming the site (tip: never wor on any live pages, always use copies).
 
Report
Tue 04/09/01 at 22:40
cjh
Regular
"It goes so quickly"
Posts: 4,083
Oh right.... thats cool then.

Thanx for putting my mind at ease....
 
Report
Tue 04/09/01 at 20:53
Turbonutter
Regular
"Eff, you see, kay?"
Posts: 14,156
That path is a Linux filesystem path to your files only. All servers do this. This path cannot be accessed unless the requesting script is located in the DocumentRoot of the VirtualHost (I assume it's a virtual host) that that path belongs to. In other words, it cannot be accessed by anyone other than you, and is totally secure.
 
Report
Mon 03/09/01 at 18:52
cjh
Regular
"It goes so quickly"
Posts: 4,083
I've noticed that if an Error occurs in a PHP Script, that it prints the Location of the Script in a way that could be a security risk:

/users/freeola/.... you know the rest.

The thing is, when an error occurs, the user can see this clearly, and they have then been given information to access your files. As this is the method of getting to your files through scripts, those type of people could do things like delete files, create loads of new ones, move them, rename then, edit them.....

..So, Andrew, is there anyway that you can change it, so that if an error occurs, the full path to the problem isn't posted???

Thanx for reading....
 
Report

Freeola & GetDotted are rated

Check out some of our customer reviews below:

The coolest ISP ever!
In my opinion, the ISP is the best I have ever used. They guarantee 'first time connection - everytime', which they have never let me down on.
First Class!
I feel that your service on this occasion was absolutely first class - a model of excellence. After this, I hope to stay with Freeola for a long time!

View More Reviews

Need some help? Give us a call on 01376 55 60 60

Go to Support Centre

Find Us

Freeola & GetDotted
94 Church Street
Bocking
Braintree
Essex
CM7 5JY

Our Websites

About Us

Freeola is an ISP, offering unrivalled internet services to small businesses and consumers in the UK. We offer a range of services, from broadband to web hosting. Start at cheap domain name registration, get a free website, or just browse the site. Read more about Freeola & GetDotted.

View our Customer Reviews.

Join Our Mailing list

Join the Freeola & GetDotted mailing list for exclusive deals, offers and service updates straight to your email inbox.

Sign Up to the Mailing List

It appears you are using an old browser, as such, some parts of the Freeola and Getdotted site will not work as intended. Using the latest version of your browser, or another browser such as Google Chrome, Mozilla Firefox, or Opera will provide a better, safer browsing experience for you.