|
|
Use AppleScripts to generate web pages
Hear! Hear! Ditto what the two above said. Remember also, that if your Web server is 'online'... ie. accessible from the greater Web, then you're not only putting your own personal machine and data at risk, but you're also putting the online community at risk. Someone finds a hole in one of your scripts (it happens all the time), and gains your admin privileges. Using that access, they can create a spam relay, or a spamvertizer site, or launch denial of service attacks, or store child porn ... etc etc....
Use AppleScripts to generate web pages
I guess I don't see it. I thought the whole point of using server side includes was so that you could not see the script or control it and therefore your security risk is minimal. Also, since there is really no way of posting to the AppleScript I don't see how anyone could just randomly gain control of the system. I guess what I could see happen is that someone could upload an shtml page to my website and use that to control my computer. But the only way that would happen is if they were able to gain access of my computer in the first place. I guess I don't really see what the security risk is. Can you explain more of what you mean? Thanks.
Use AppleScripts to generate web pages
I'm not a security expert by any means, but I can think of an example. Some scripts that allow input (and aren't coded correctly) are vulnerable to a buffer overflow exploit. From what I understand, this is when Mr. Evil Guy sends more data than expected, and then is able overwrite some of the system memory with his code. Exactly how one would do this I'm not sure, but I know it can be done. Is done, all the time. |
SearchFrom our Sponsor...Latest Mountain Lion HintsWhat's New:HintsNo new hintsComments last 2 daysNo new commentsLinks last 2 weeksNo recent new linksWhat's New in the Forums?
Hints by TopicNews from Macworld
From Our Sponsors |
|
Copyright © 2014 IDG Consumer & SMB (Privacy Policy) Contact Us All trademarks and copyrights on this page are owned by their respective owners. |
Visit other IDG sites: |
|
|
|
Created this page in 0.08 seconds |
|