Dynamic signature secirity risk??

Whether you're a newbie or an experienced programmer, any questions, help, or just talk of any language will be welcomed here.

Moderator: Coders of Rage

Post Reply
Martyj
Chaos Rift Newbie
Chaos Rift Newbie
Posts: 20
Joined: Thu Apr 23, 2009 11:23 am
Location: Ogden Utah
Contact:

Dynamic signature secirity risk??

Post by Martyj »

I was wondering the security risk in allowing a forum to have dynamic signatures such as
Image

Only thing I see with php is allowing people to view your isp, ip, version of windows, web browser.

What's the risk with CGI scripts?
User avatar
Falco Girgis
Elysian Shadows Team
Elysian Shadows Team
Posts: 10294
Joined: Thu May 20, 2004 2:04 pm
Current Project: Elysian Shadows
Favorite Gaming Platforms: Dreamcast, SNES, NES
Programming Language of Choice: C/++
Location: Studio Vorbis, AL
Contact:

Re: Dynamic signature secirity risk??

Post by Falco Girgis »

...what? Dude, you are submitting forms via CGI and PHP by even posting on these forums.

CGI, or common gateway interface, is another method of doing the same thing that PHP does, running a script on the server to create/manage/run web pages. Generally you think of Perl being used with CGI.

If you're worried about security risks of things like server-side anything, you shouldn't be on the internet. ;)
User avatar
M_D_K
Chaos Rift Demigod
Chaos Rift Demigod
Posts: 1087
Joined: Tue Oct 28, 2008 10:33 am
Favorite Gaming Platforms: PC
Programming Language of Choice: C/++
Location: UK

Re: Dynamic signature secirity risk??

Post by M_D_K »

what he said ^^
ROFL :lol:
Gyro Sheen wrote:you pour their inventory onto my life
IRC wrote: <sparda> The routine had a stack overflow, sorry.
<sparda> Apparently the stack was full of shit.
User avatar
eatcomics
ES Beta Backer
ES Beta Backer
Posts: 2528
Joined: Sat Mar 08, 2008 7:52 pm
Location: Illinois

Re: Dynamic signature secirity risk??

Post by eatcomics »

Martyj wrote:I was wondering the security risk in allowing a forum to have dynamic signatures such as
Image

Only thing I see with php is allowing people to view your isp, ip, version of windows, web browser.

What's the risk with CGI scripts?
lolz runescape :lol:
Image
User avatar
Maevik
Chaos Rift Junior
Chaos Rift Junior
Posts: 230
Joined: Mon Mar 02, 2009 3:22 pm
Current Project: www.keedepictions.com/Pewpew/
Favorite Gaming Platforms: PC
Programming Language of Choice: C++
Location: Long Beach, CA

Re: Dynamic signature secirity risk??

Post by Maevik »

Dude, nearly every website you go to today is storing all that information when you visit it anyway. They want to know your browser/resolution/OS to maximize usability and anytime you're banned from somewhere it's cause they know your IP.

Use a firewall and don't put up any info that would give a L337 H@XX0|2 reasons to try to access your system.
My love is like a Haddoken, it's downright fierce!
Martyj
Chaos Rift Newbie
Chaos Rift Newbie
Posts: 20
Joined: Thu Apr 23, 2009 11:23 am
Location: Ogden Utah
Contact:

Fuck this forum.

Post by Martyj »

I'm not worrying about myself. I'm worrying about the website. I know php is server side scripting.

Also who cares if it is for runescape. What's so bad about runescape. How many 3d games do you see written in java? Btw GyroVorbis clearly I know about php seeing as how I coded that image myself.
If you're worried about security risks of things like server-side anything, you shouldn't be on the internet
You shouldn't be telling me about internet stuff seeing as how you didn't do shit on this website to help create it.

Good bye everyone
User avatar
M_D_K
Chaos Rift Demigod
Chaos Rift Demigod
Posts: 1087
Joined: Tue Oct 28, 2008 10:33 am
Favorite Gaming Platforms: PC
Programming Language of Choice: C/++
Location: UK

Re: Dynamic signature secirity risk??

Post by M_D_K »

why hello there BJ. why didn't you use your other account?
Gyro Sheen wrote:you pour their inventory onto my life
IRC wrote: <sparda> The routine had a stack overflow, sorry.
<sparda> Apparently the stack was full of shit.
User avatar
eatcomics
ES Beta Backer
ES Beta Backer
Posts: 2528
Joined: Sat Mar 08, 2008 7:52 pm
Location: Illinois

Re: Dynamic signature secirity risk??

Post by eatcomics »

M_D_K wrote:why hello there BJ. why didn't you use your other account?
Heh, he doesn't get our humor :)
Image
User avatar
dandymcgee
ES Beta Backer
ES Beta Backer
Posts: 4709
Joined: Tue Apr 29, 2008 3:24 pm
Current Project: https://github.com/dbechrd/RicoTech
Favorite Gaming Platforms: NES, Sega Genesis, PS2, PC
Programming Language of Choice: C
Location: San Francisco
Contact:

Re: Fuck this forum.

Post by dandymcgee »

Martyj wrote: Good bye everyone
Forum Rules wrote: 1. No farewell threads or posts. (Because you shouldn't say what you don't mean and childish pouting is not tolerated.)

Punishment for violating the above rule is banning and/or account deletion, depending on what I feel like. You can try appealing to me via e-mail if you want, no guarantees.
I spy with my little eye.. someone requesting a ban. ;)
Falco Girgis wrote:It is imperative that I can broadcast my narcissistic commit strings to the Twitter! Tweet Tweet, bitches! :twisted:
Post Reply