Vulnerability UCP - Printable Version
+- SA-MP Forums Archive (https://sampforum.blast.hk)
+-- Forum: SA-MP Server (https://sampforum.blast.hk/forumdisplay.php?fid=6)
+--- Forum: Server Support (https://sampforum.blast.hk/forumdisplay.php?fid=19)
+--- Thread: Vulnerability UCP (/showthread.php?tid=569455)
+- SA-MP Forums Archive (https://sampforum.blast.hk)
+-- Forum: SA-MP Server (https://sampforum.blast.hk/forumdisplay.php?fid=6)
+--- Forum: Server Support (https://sampforum.blast.hk/forumdisplay.php?fid=19)
+--- Thread: Vulnerability UCP (/showthread.php?tid=569455)
Vulnerability UCP - Schaffer - 30.03.2015
How can I secure my UCP? I use my UCP only for people can register and login for check accounts informatios. But, security it so down, how can I have a better security? Thanks.
Re: Vulnerability UCP - Crystallize - 30.03.2015
Send me your UCP link , i'll do a research and give you the solutions if there is any problem.
Re: Vulnerability UCP - Abagail - 30.03.2015
You need to make sure you escape all user-provided strings(such as a username and password), don't rely on easily hackable data storing systems, salt and or hash user passwords, etc.
You need to do some research before making a system that will be used daily by all-kinds-of-people - some of which may not necessarily like your server - they may have some evil thoughts.
Re: Vulnerability UCP - Vince - 30.03.2015
Use only prepared queries so you don't have to worry about escaping or adding quotes or whatever. But security is very hard to do right, especially for an amateur. You might want to elaborate what exactly it is that needs to be extra secured.
For the semi-professional look, set up HTTPS. Requires a dedicated IP (costs extra). Requires an SSL certificate ($12/year or something for the cheapest ones).
Re: Vulnerability UCP - Abagail - 30.03.2015
Quote:
|
Originally Posted by Vince
 For the semi-professional look, set up HTTPS. Requires a dedicated IP (costs extra). Requires an SSL certificate ($12/year or something for the cheapest ones).
|