/b/ - Random
Only idiots take /b/ seriously.
Max Message Length:
Make sure I have a block bypass
Drag files to upload or click here to select them
Max File Size:
File Limit Per Post:
Remember to follow the
02/17/2019 (Sun) 13:19:37
LYNXCHAN IS UNSAFE. STOP USING IT Protect Database Access
If you are using a data such as Mongo DB as your persistent storage, you also need to protect access to the database as well as prevent database being compromised by attackers. If you are using MongoDB as your database, following things should be considered as important.
Enable client authentication in MongoDB to prevent the situation “Everyone is admin”.
By default, MongoDB does not enforce authentication to access databases. This is really harmful since anybody has direct access to the database content even if they do not have access to use your application. So you need to implement client authentication in MongoDB and prevent malicious access to the data.
Sanitize user inputs used in MongoDB queries
Delete only files
Delete media (Actually removes the saved files from the server, standard file deletion only removes the reference to the selected posts)
Captcha(Used for reporting and bans by board staff):