FUDforum
Fast Uncompromising Discussions. FUDforum will get your users talking.

Home » Imported messages » comp.lang.php » My contact form is not emailed to me
Show: Today's Messages :: Polls :: Message Navigator
Return to the default flat view Create a new topic Submit Reply
Re: My contact form is not emailed to me [message #173623 is a reply to message #173621] Wed, 20 April 2011 20:59 Go to previous messageGo to previous message
Jerry Stuckle is currently offline  Jerry Stuckle
Messages: 2598
Registered: September 2010
Karma:
Senior Member
On 4/20/2011 4:41 PM, P E Schoen wrote:
> "The Natural Philosopher" wrote in message
> news:ion6ej$jhv$1(at)news(dot)albasani(dot)net...
>
>> P E Schoen wrote:
>
>>> The only way I understand would be possible to do this is by
>>> listening to the data over the network and identifying the CGI
>>> variables with
>>> that information. I suppose that is possible if someone was using a
>>> public network to access the PHP script. But I doubt that a hacker
>>> would want to put in that much effort. The content is being used for
>>> public announcements anyway, so the data is not sensitive.
>
>> It is JUST possible if you are using weakly encrypted WiFi.
>
>> In practice, there are far easier ways to hack than trying to
>> compromise ISP and backbone routers.
>
> My WiFi is password protected so I'm not worried about that. But the
> user may be at any place where internet access can be had, and the CGI
> variables would be posted from there to my remote server. I don't think
> that will be a problem. It may be more likely that someone would observe
> the user entering the information and remember the keystrokes for the
> password. But I really don't know all that much about TCP/IP and HTTP
> and networks in general.
>
> Thanks,
>
> Paul

If you're using WEP, it's not very protected. That can be broken with a
laptop in less than a day.

And they don't have to know a lot - by just looking at the source code
for your page they can tell what's being sent - and get clues on how to
break it.

Insecure passwords is one of the easiest and most common ways to hack a
site - but trying to get users to create passwords is a lost cause.

--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
jstucklex(at)attglobal(dot)net
==================
[Message index]
 
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Previous Topic: doctype not found?
Next Topic: Re: Weird stuff
Goto Forum:
  

-=] Back to Top [=-
[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Fri Nov 29 04:42:58 GMT 2024

Total time taken to generate the page: 0.05958 seconds