: Is SimplePHPBlog a secure blogging engine? Has anyone used the blog engine SimplePHPBlog? It is a simple blog engine that uses only text files (no database). My problem with it is that the

Has anyone used the blog engine SimplePHPBlog? It is a simple blog engine that uses only text files (no database).

My problem with it is that the content directory where the texts files are stored appears to require being world writeable/readable (i.e. permission 777) for it to work. This means anyone can access the text files with a browser! These text files include the blog/comment poster's IP and email address!

This is not secure or good practice, right?

10.01% popularity Vote Up Vote Down

: SEO best practices for a web feature that uses geolocation by IP Address I'm working on a feature that tailors content based on a geo location lookup by IP address in order to provide information

@Karen161

Posted in: #Geotargeting #Seo

1 Comments

: For what i understood from you question i have this to share. If you activate the domain alias, but create a .htaccess rewrite to send all domain "B" requests to domain "A", Google should

@Karen161

0 Comments

: Functionality-wise, it would be easier to manage with www.foo.com/us/ and www.foo.com/ca/. Having www.foo.com for US and www.foo.ca for Canada would be 2 completely different sites. Plus, if you

@Karen161

0 Comments

: For a lot of the smaller companies (us included) we are just resellers for a Registrar (in our case NetEarthOne). Registrars often offer different pricing bands depending on the volume of domains

@Karen161

0 Comments

Login to post a comment!

1 Comments

Sorted by latest first Latest Oldest Best

@Sarah324

Are those files in the web root? Or below it? If they are below it you're fine. If not you can always block those files from being viewed in a browser using .htaccess. Just place the .htaccess file in that directory with code similar to this:

<Files *.db>
Order Deny,Allow
Deny from All
</Files>

Change .db to be whatever file extension those files are using. Then whenever someone tries to access them via a browser they will get a 403 forbidden error.

10% popularity Vote Up Vote Down

Feed

: Is SimplePHPBlog a secure blogging engine? Has anyone used the blog engine SimplePHPBlog? It is a simple blog engine that uses only text files (no database). My problem with it is that the

More posts by @Karen161

: SEO best practices for a web feature that uses geolocation by IP Address I'm working on a feature that tailors content based on a geo location lookup by IP address in order to provide information

: For what i understood from you question i have this to share. If you activate the domain alias, but create a .htaccess rewrite to send all domain "B" requests to domain "A", Google should

: Functionality-wise, it would be easier to manage with www.foo.com/us/ and www.foo.com/ca/. Having www.foo.com for US and www.foo.ca for Canada would be 2 completely different sites. Plus, if you

: For a lot of the smaller companies (us included) we are just resellers for a Registrar (in our case NetEarthOne). Registrars often offer different pricing bands depending on the volume of domains

Login to post a comment!

1 Comments

Back to top | Use Dark Theme