PHPJunkyard support forum


https://developers.phpjunkyard.com/

Security question on GBook

https://developers.phpjunkyard.com/viewtopic.php?t=2825

Page 1 of 1

Security question on GBook

Posted: Sat Oct 24, 2009 7:32 am
by jack
Great script - however I do have a question.
By typing in the address of your website and the directory GBook is in, then "entries.txt" it is possible to read the contents of this file. This file contains the email address, comments, etc. Is it possible to make it more secure?

Posted: Sat Oct 24, 2009 8:17 am
by Henrie
Hello Jack,

in the settings.php file you can change the filename in which the entries will be stored.

Code: Select all

/* Name of the file where guestbook entries will be stored */
$settings['logfile']='entries.txt';
As put in the readme.htm file which is contained in the package:
$settings['logfile']
Name of the file where posts will be stored. I strongly recommend that you rename this file from the default name entries.txt to some hard-to-guess name, for example g3isht39a.txt

And ofcourse you should disable listing directory contents on your server (if not done already).

Greetings,
Henrie
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited