I'm building an app that takes resources from the server. But how can I lock that resource so that not everyone can access like this picture:
But when we access along with the file name we can still access it.
How can I do that? is there a setting on the server? Or whether to make arrangements with the server programming language?
I am very happy if anyone can help my problem. Thank you in advance.
Related
I have a computer that is used for getting database information from the server in the same domain, and this computer is used by employees who don't have the server admin information.
When the computer restarts, I'd like it to automatically log in to Windows Server so that it can access the database files. Is it possible to write a script for this that runs on boot?
Thanks in advance
I solved this by adding the credentials to the Credentials Manager in Windows, along with disabling the Windows Server dashboard program. This makes Windows automatically log in to the server with the stored credentials on boot.
Since your question really isn't specific, I'd like to suggest two ways of accomplishing your goal.
Since you'd like to access database information, why not use some kind of database management software (like SSMS if you're using MSSQL) and set up proper permissions for the user/computer that will need to obtain information from that particular server/database.
If you need access to raw files (which doesn't make much sense in case of MSSQL for accessing purposes), why not set up proper permissions on the file or parent folder, giving the user that is logged to the client PC proper permissions to access the files that are of interest.
Perhaps someone can share their experience or advise on how to get this accomplished.
I have looked around and found only a wiki entry dealing with server migration from host to host.
Here is the setup and things I have tried:
locally I am running win 10 with XAMPP server
hosted on hostgator
Downloaded all files from live site
Did an SQL dump/import onto my local mySQL
Edited ‘exp_sites’ for paths and URLs
Edited ‘config.php’ in system folder
Result:
- can not login into backend ...that is form refreshes but no redirect. I can tell that db is being queried since since I do get error back if it is a wrong password.
Anyone has done similar setups/downloads/takve-overs of their client’s site?
Ideally, I would just like the access to CP so I can edit the settings/paths of weblogs,uploads etc.
Thanks for your time!
Are you using CI default password library for password creation? If you are using then these passwords will not work for you because this library generate server dependent passwords.
i have a curious issue. When i start the connect manager i see a white window with the following error message: svwrap $Revision: 1.36 $
Error #619 security: script is world-writable
Does anyone have an idea what could be? I know what "world-writable" means but what file it might be? Thanks for an answer. Hermann
I'd contact your hosting company this. This message isn't generated by Magento, it's generated by a program your web hosting company has installed to scan for world writable scripts.
Also, you may want to consider a different web-host if you need to use Magento Connect's web UI. This feature requires the Magento web server user have write access to the Magento installation to download and update files. It sounds like your hosting company may not be down with that.
All that said, my guess is it's, at minimum, the downloader/index.php file.
I worked on a website and it was hosted on bigrock server. But the client want me to transfer into just host. I managed to copy all the stuffs, but the theme I installed into old server is not getting copied into new justhost server. Please help me out in this one.
more details maybe, maybe an error message or something?
But: I found it quite common for file permissions to be an issue when using straight copy/paste/move.
When moving anything like a cms or cart with potential file permission issues, I would through cpanel/UI compress the lot and then move or copy the .zip/.tar ; On new server unzip through cpanel/UI and previous permission are intact too.
For some reasons I have a 663.php file in every folder and subfolders of my httpdoc root in my web server ftp. I don't know where this file came from and my host does not know either
I would very much appreciate any help
Depending on it's content it could seem like a PHP Shell Backdoor.
An attacker would upload this file to gain access to your files, database ect.
They usually exploit a flaw in your application, to upload files.
Be sure to update all the software you are running.
Someone might have gained access to your site, also change all passwords.
It looks like this has occurred before to other users:
Your site has been hacked. The 663.php file is sending out anonymous
spam. If you host with GoDaddy, this is a common theme as thousands
of accounts share one IP and one person with shell access can get in
and place an htaccess file above the root folder on the server and
autoload the files into every folder in your website and onto every
site within that IP address. Year1Media
Quote from AolAnswers.
Thank you all for your help. After a little search i found out that It was a Plesk security vulnerability. The problem was solved by running a patch in parallels plesk. Apart from inserting unknown files it also changed .htaccess to redirect to weird websites.
It Is a Plesk Problem
they are correction patches here:
http://kb.parallels.com/en/113321