Network Security: Detailed info on Re: Securing file access

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Web-App-Sec

[Top] [All Lists]

Re: Securing file access

from [Saphyr] Network Security

[Permanent Link]

Subject:	Re: Securing file access
Date:	Tue, 28 Sep 2004 08:15:28 +0200

guess a file name to download).  In order to access the files, the database
would link a file to a unique id, so a page that validates the user would
then give access to the file stored outside of the www on the server.  Now,
this is where the real question lies.  How is this possible since the files
are not in a www accessible path, since a mere link to a file won't due.
Any thoughts would be welcome.


Hi there.

According to your files sizes, could you consider using binary fields in your
database ?

.antoine




------------oOoo---Ôô----ooOo---------------------------
Antonio FONTES    (well, me, actually)
http://www.nxtg.net/saphyr/  (tout et rien en français)
http://www.nxtg.net/is/ (blog - développeur web)
E-mail: prenom.nom@mondomaine.net
-------------------------------------------------------------

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Securing file access, John M. L. Re: Securing file access, Saphyr <= Re: Securing file access, Jason Merriman Re: Securing file access, Ian Re: Securing file access, Subs RE: Securing file access, Koen Vingerhoets Re: Securing file access, PD9 Software Re: Securing file access, Ben Timby Re: Securing file access, robbin Re: Securing file access, James Barkley Re: Securing file access, robbin Re: Securing file access, Ido Rosen

Previous by Date:	Re: xss php cookie-stealing code, Daniel Souza
Next by Date:	Re: Securing file access, Ian
Previous by Thread:	Securing file access, John M. L.
Next by Thread:	Re: Securing file access, Jason Merriman
Indexes:	[Date] [Thread] [Top] [All Lists]