Register Members List Search Today's Posts Mark Forums Read

Reply
 
Thread Tools
  #1  
Old 05 Sep 2012, 19:59
Jafo232 Jafo232 is offline
 
Join Date: May 2004
Protecting plugin and template table with Triggers & Signals

Here is a product I put together for vb4 (free) that some of you might find interesting. The plugin protects the plugin and template table from being hacked by using triggers and signals to authenticate a valid user.

Basically once the administrator area properly authenticates a user, it sets a secret session variable in MySQL. Unless that variable is defined, the trigger will not allow the protected tables to be altered.

Considering that I can see no reason why these tables should be modified in any way unless the user is in the admincp, I think it will help a lot with injection attacks.. Works on VB3 too:

http://www.lampwrights.com/showthrea...=1284#post1284

Enjoy!
__________________
Become a Lampwright today at www.lampwrights.com!
Reply With Quote
Reply

Similar Threads
Thread Thread Starter Forum Replies Last Post
Administrative and Maintenance Tools Adding EditArea for Template & Plugin Editing sweede vBulletin 3.7 Add-ons 26 24 Sep 2012 18:04



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


New To Site? Need Help?

All times are GMT. The time now is 16:15.

Layout Options | Width: Wide Color: