Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

editing pages on server from clients (security feature??)

0 views
Skip to first unread message

emekadavid

unread,
Dec 22, 2009, 1:09:57 PM12/22/09
to
I found a website and scripts debugger for firefox, firebug debugger:
<a
href="http://www.getfirebug.com/">Firebug</a> and tried editing a page
in
place that was stored on a local server machine, apache, and I
successfully
edited it.
How can i prevent such like debuggers or editors from having access to
my
pages; a malicious surfer could do suchsame edit if i post the pages
on the
net.
<a href="http://www.getfirebug.com/">Firebug</a>

thanks

--
ich bin ein berliner


Jerry Stuckle

unread,
Dec 22, 2009, 1:56:07 PM12/22/09
to

You can't. If the pages are on the internet, anyone can download them
and edit them. They don't even need a program like firebug - IE and
notepad will do it.

--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
jstu...@attglobal.net
==================

Harlan Messinger

unread,
Dec 22, 2009, 2:33:03 PM12/22/09
to
emekadavid wrote:
> I found a website and scripts debugger for firefox, firebug debugger:
> <a
> href="http://www.getfirebug.com/">Firebug</a> and tried editing a page
> in
> place that was stored on a local server machine, apache, and I
> successfully
> edited it.
> How can i prevent such like debuggers or editors from having access to
> my
> pages; a malicious surfer could do suchsame edit if i post the pages
> on the
> net.

I'm not aware that Firebug can save changes even to your local drive.
All you're editing is the document currently in the browser. It isn't
written back to the file.

On the other hand, if your server is open to being written to via *any*
means by unauthorized people on the outside, you have a big, big network
security problem.

Ed Mullen

unread,
Dec 22, 2009, 2:35:26 PM12/22/09
to
emekadavid wrote:
> I found a website and scripts debugger for firefox, firebug debugger:
> <a
> href="http://www.getfirebug.com/">Firebug</a> and tried editing a page
> in
> place that was stored on a local server machine, apache, and I
> successfully
> edited it.

Maybe, but did you successfully SAVE it?

> How can i prevent such like debuggers or editors from having access to
> my
> pages; a malicious surfer could do suchsame edit if i post the pages
> on the
> net.

As Jerry said, anyone can save your source locally and do what they want
to with it. However, you have no worries because they can't upload a
document back to your server.

--
Ed Mullen
http://edmullen.net
Law of Probability Dispersal: Whatever it is that hits the fan will not
be evenly distributed.

Jonathan N. Little

unread,
Dec 22, 2009, 2:44:09 PM12/22/09
to

Can edit a local copy of the source but it cannot be uploaded to your
server unless they have your user named and password.

--
Take care,

Jonathan
-------------------
LITTLE WORKS STUDIO
http://www.LittleWorksStudio.com

0 new messages