Amateur looking for advice on web security/CGI folder....

Mark Wieder mwieder at ahsoftware.net
Thu Aug 13 23:50:20 EDT 2015


On 08/13/2015 04:29 PM, Tim Selander wrote:

> My remaining question is on keeping text data secure on our web server
> (on-rev). I use LC scripts in the cgi folder. My understanding is that
> the cgi folder is secure from any outside breach. Is that understanding
> correct? So if I store my company's customer data in the cgi folder, it
> is secure?

Oh my goodness no.
Don't put any data you need to keep secure on a publicly-facing server.
Especially not on a shared server ala on-rev.
You *are* requiring https already, right?
And you've modified the .htaccess file in the public_html folder?
And disabled anonymous ftp?

-- 
  Mark Wieder
  ahsoftware at gmail.com




More information about the Use-livecode mailing list