Can you hack this page

shauny17

Hi guys,

just wandering if you would be able to hack this page, i will not show source could as an end user would not be able to see the source code, URL is:

http://beta2.spacebarcomputers.com/index.php?act=register

Let me know what u done and possible resolutions to this.

TIA
Shaun

(ignore my auto refresh, its for development use on my split screen)

leatherback

You server seems to be down.

Anyway.. Why would you want to prevent people from seeing the html?

Weedpacket

Well, you have to admit that a 404 is pretty effective.

leatherback

True!
lol

madwormer2

Hmm, yeh, I think my site could be vunerable, can you try and show me any problems, here is the URL:

http://google.com

😉

You should prove that you own it before anyone starts hacking away.

leatherback

Mad: Don't worry. Obviously somebody was successful, as the server is down 😃

madwormer2

Even still, I don't want to see any fellow PHPers in legal trouble now 😛

leatherback

True.

However, I think the request to just view the sourcecode of the webpage (the HTML) as we all know it is not possible to see the php code, unless you actually hack into the server. And nobody here would do that on request (Although I suspect some people might do it on saturdaynight for the fun of it..)

Weedpacket

Then again, if it we're expected to judge the security of the system we need to see the PHP code. No point in advertising it to users, obviously (the only ones who care would be exactly the ones who shouldn't be told the details), but in the current situation it doesn't say much for the author's confidence in the code's robustness if it can only be considered secure for as long as no-one actually knows what it does.

But then that would be better conducted in the Code Critique forum.

leatherback

Well.. If we then add the responsiveness of the author to the comments in this forum.. I do not think her really cares. Just needs to say to his boss 'Yeah, I had a bunch of coders try to hack it for a week, and they couldn't get in.' And not mention that the server was down for the intire time..

Weedpacket

Maybe it was hacked...?

aspekt9

Looks like he deleted the subdomain, the server still works:

http://spacebarcomputers.com/index2.shtml