hacker

How to bypass Drupal strong security?

Thu, 02/17/2011 - 17:45 — Alexis Wilke

Interestingly enough, today I received a Security Advisory from Drupal saying that users received an email from a hacker asking them to install a Trojan module on their Drupal system.

I find it quite interesting since, if Drupal wasn't secure, the hackers would not have to ask you to make it unsecure, would they?

However, this shows how many CMS systems introduce a security issue problem to your web server installation since it is required to let your web server execute any one PHP file...

All the files installed on your web server and that are directly accessible from the outside (i.e. ...

Newsletters from Made to Order Software hosting websites

Subscribing to a Newsletter from a website hosted with us

Made to Order Software offers advanced websites (Web 2.0) and many of our customers choose to make use of the Newsletter package with their website. It has extraordinary advantages such as adding content to your website at the same time as you are sending emails to your subscribers.

We also offer hidden mailing capabilities such as auto-responders and list management.

How do I unsubscribe?

All subscribers of any one of the lists hosted by Made to Order Software Corp. can always unsubscribe by following the unsubscribe link at the ...

Setting up your PayJunction GateWay Account

PayJunction

PayJunction is an online product that one can subscribe to in order to process credit cards (Visa, Mastercard, American Express, Discover.)

You can get your own Merchant Account by filling up our online form.

FileAttributes

Tag Info

Tag Number:

Tag Type:

Format

Tag Flash Version:

Brief Description:

Since version 8, this tag is required and needs to be the very first tag in the movie. It is used as a way to better handle security within the Flash Player.

Tag Structure:

struct swf_fileattributes {
	swf_tag			f_tag;		/* 69 */
	unsigned		f_reserved : 3;
	unsigned		f_has_metadata : 1;
	unsigned		f_allow_abc : 1;	/* since V9.0 */
	unsigned		f_suppress_cross_domain_caching : 1;	/* since V9.0 */
	unsigned		f_swf_relative_urls : 1;	/* since V9.0 */
	unsigned		f_use_network : 1;
	unsigned		f_reserved : 24;
};

The FileAttributes tag is new to version 8. It must be present in all movies version 8 and over. It must be the very first tag in the SWF movie. It should be unique (other instances will be ignored.)

The f_has_metadata flag shall be set to 1 whenever the movie includes a Metadata tag.

MO Backup for Drupal with PostgreSQL

$55.00

MO Backup Logo A simple module that automatically and manually creates backups of one's Drupal websites.

MO Backup backups your database and files folder. It can operate automatically when CRON is available.

$55.00

No more excuses! Protect your passwords on your computer with strong encryption.

Wed, 10/28/2009 - 17:36 — Alexis Wilke

More and more, we hear talks about hackers entering personal accounts on systems such as Facebook, Twitter, ecademy, Plaxo and many others. There are many reasons why someone's account will be hacked. One of them is the lack of imagination for their password. Plus, some people use the same password for all of their accounts.

So, if you do it right, you will end up with many passwords. On my end, I have one password per account and that means about 400 passwords... That's totally unmanageable in a fairly standard human brain. For this reason, you end up writing down all your passwords

Your cell phone is hackable...

Fri, 07/31/2009 - 00:02 — Alexis Wilke

This is a quite interesting article which I thought I should share and keep a copy of!

Most of us, even if we can determine whether a piece of software (or hardware!) can be hacked, we just do not have the time to spend on testing each device we use to ensure that no hackers will be able to get it. We rely on the manufacturer to do that work for us.

This article shows that even though all manufacturers have protections, all are vulnerable! And that means your data is vulnerable on your cell phones... Hope this does not scare you too much!

Drupal 6.9 upgrade

Thu, 01/15/2009 - 18:44 — Alexis Wilke

As of now, our servers are running Drupal 6.9.

As stated on the Drupal website, this is a security update. Some issues could have given a hacker access to our database system. Although the risk was low, we decided to upgrade immediately.

The other problems that Drupal 6.9 resolves, were not issues on our servers.

If you have an questions or concerns, please, feel free to contact us.

Links:

Hacking, Good or Bad?

Tue, 09/16/2008 - 13:06 — Alexis Wilke

I already mentioned the American Government as being a target of many hackers.

You may also remember that in 1998, the Department of Defense was hacked by someone named Ehud Tenenbau. He was arrested at the time. He was still a teenager then.

Once back on the streets, he decided to wear a white hat and helped companies, many in Israel, to enhance their defenses. But that was only his day time job!

I guess that once you had a taste for a bad behavior, you just go on with it.

Increase Security with a Reverse Proxy Server

Mon, 05/22/2006 - 00:00 — Alexis Wilke

What is Reverse Proxy?

There are three excellent reasons to switch to a Reverse Proxy Server right away:

Protect all of the sensitive data on your servers;
Have only one gateway to the outside world;
Ease the load on your web server by allowing the reverse proxy server to distribute the requests.

Figure 1 below presents a simplified setup of a Reverse Proxy Server.

Made to Order Software Newsletter

Previous issues