Microsoft Content Management Server - Re: Hiding file system structure from generated javascript

This is Interesting: Free IT Magazines  
Home > Archive > Microsoft Content Management Server > December 2006 > Re: Hiding file system structure from generated javascript





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author Re: Hiding file system structure from generated javascript
hendrik

2006-12-10, 1:16 pm

Hi,

That is what it is in my mind as well.
However, the security guy that I am dealing with has a different opinion. He
recommended those targetted page must be stored as server includes rather
than appearing in the page's source as part of javascript. His reasoning is
that exposing the URL's file structure is dangerous. Especially for hackers.

I tried to convice him that a file structure appearing on the page source is
inherent problems in web-based application. Even on the browser, it is
showing the URL.

Well, back to discussion table to convice them again. Anyway, let me know if
there is another resolution to this type of problem. Thanks.


"Stefan Goßner [MSFT]" wrote:

> Hi Hendrik,
>
> in classic websites (e.g. ASP.NET and ASP) you always see the structure of
> the site.
> Why should it be more dangerous for MCMS?
>
> Cheers,
> Stefan
>
>
> "hendrik" <hendrik@discussions.microsoft.com> wrote in message
> news:5FC72ABA-F111-4EFB-83FE-A023C9227174@microsoft.com...
>
>
>
Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com