/b/ - Random

Only idiots take /b/ seriously.

Mode: Reply
Subject
Message

Max message length: 4096

Files

Max file size: 1.00 MB

Max files: 3

E-mail
Password

(used to delete files and postings)

Misc

Remember to follow the rules


FROM MEWCH Retard 02/17/2019 (Sun) 13:19:37 No. 794
LYNXCHAN IS UNSAFE. STOP USING IT Protect Database Access
If you are using a data such as Mongo DB as your persistent storage, you also need to protect access to the database as well as prevent database being compromised by attackers. If you are using MongoDB as your database, following things should be considered as important.

Enable client authentication in MongoDB to prevent the situation “Everyone is admin”.

By default, MongoDB does not enforce authentication to access databases. This is really harmful since anybody has direct access to the database content even if they do not have access to use your application. So you need to implement client authentication in MongoDB and prevent malicious access to the data.

Sanitize user inputs used in MongoDB queries

MongoDB query language is a javascript based technique. Due to this nature, MongoDB is also vulnerable to script injection attacks. When you use user supplied input values inside mongo db queries you should properly enforce type checks and necessary input validations and sanitizations to prevent attackers executing malicious scripts on your database.

Delete
Report/Ban

Captcha (required for reports and bans by board staff)


no cookies?