/b/ - Random

Only idiots take /b/ seriously.


Reply:


Max Message Length: 4096
Make sure I have a block bypass
Files:
Spoiler Max File Size: 1.00 MB
File Limit Per Post: 3
Remember to follow the rules .


FROM MEWCH Retard 02/17/2019 (Sun) 13:19:37 No. 794
LYNXCHAN IS UNSAFE. STOP USING IT Protect Database Access
If you are using a data such as Mongo DB as your persistent storage, you also need to protect access to the database as well as prevent database being compromised by attackers. If you are using MongoDB as your database, following things should be considered as important.

Enable client authentication in MongoDB to prevent the situation “Everyone is admin”.

By default, MongoDB does not enforce authentication to access databases. This is really harmful since anybody has direct access to the database content even if they do not have access to use your application. So you need to implement client authentication in MongoDB and prevent malicious access to the data.

Sanitize user inputs used in MongoDB queries

MongoDB query language is a javascript based technique. Due to this nature, MongoDB is also vulnerable to script injection attacks. When you use user supplied input values inside mongo db queries you should properly enforce type checks and necessary input validations and sanitizations to prevent attackers executing malicious scripts on your database.


Reason:
Password:
Global
Delete only files
Delete media (Actually removes the saved files from the server, standard file deletion only removes the reference to the selected posts)

Captcha(Used for reporting and bans by board staff): No cookies?