Great script - however I do have a question.
By typing in the address of your website and the directory GBook is in, then "entries.txt" it is possible to read the contents of this file. This file contains the email address, comments, etc. Is it possible to make it more secure?
Security question on GBook
Hello Jack,
in the settings.php file you can change the filename in which the entries will be stored.
As put in the readme.htm file which is contained in the package:
$settings['logfile']
Name of the file where posts will be stored. I strongly recommend that you rename this file from the default name entries.txt to some hard-to-guess name, for example g3isht39a.txt
And ofcourse you should disable listing directory contents on your server (if not done already).
Greetings,
Henrie
in the settings.php file you can change the filename in which the entries will be stored.
Code: Select all
/* Name of the file where guestbook entries will be stored */
$settings['logfile']='entries.txt';$settings['logfile']
Name of the file where posts will be stored. I strongly recommend that you rename this file from the default name entries.txt to some hard-to-guess name, for example g3isht39a.txt
And ofcourse you should disable listing directory contents on your server (if not done already).
Greetings,
Henrie
I do not monitor the Gbook forums regularly anymore since I do not use the Gbook script myself anymore for a long time. But it helped me a lot in learning to understand php.