I think it is probably a moot point, but it probably bears repeating. If you can run a link checker on your 'password protected' site, and that link checker can cause 'damage' to anything. Then you are not properly protecting your area. I have not yet come across a link checker that can submit a form, so the link checker should never have the authorization to run those pages in the protected area.
An easy way to check this, without endangering your database, is to call a properly 'protected' page in your area directly from a browser that has it's javascript turned off and has had all of its cookies/session cookies, flushed. If the page runs as normal, then you have done something wrong. The good news is that we are here to help out. If, of course, you just need someone to do it for you..... don't lose my number. :^) William -----Original Message----- From: Al Musella, DPM [mailto:[email protected]] Sent: Thursday, February 19, 2009 8:46 PM To: cf-talk Subject: Re: Googlebot got me good last night...Application.cfm question Nobody else mentioned it yet, but I had something similar happen many years ago - a link checking program was accidentally run on a password protected area of the website and did a lot of funny things to our database.. ever since then, I never use a link to make a change in my database. It is just too easy to trigger it by accident. I changed everything to use forms, or where that is not practical, javascript with a confirmation, in such a way that if javascript is disabled, the link can't work. And I always log every change made, (a copy of the old data, new data, user who changed it, datestamp, IP address of user) so in case of problems, I can reverse the damage (in addition to insanely frequent backups to multiple locations) As a bonus, I use this log to display the last 10 changes made on the website in my footer... so for example, when entering checks received, the user can see the last few things he entered and if there was a mistake, he can easily go back and edit it. Takes some fear out of computer illiterate people if they know they can fix any mistakes. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:319587 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
