Should we discuss security issues or not if that could give hints on how to break protections to malicious users?

What do you think?

Yes

No

I'm new to this forum so I hesitate to say anything but, if two users need to discuss in-depth security issues, they can switch to personal messages or emails. However, unless you really know the person, you can't be sure what they will do with that information, regardless. Good question ... tough call!

The more the better.

I want to know everything. I am loyal to my clients and If someone knows the way how to do damage I like to know first and tell them, develop better system, etc.

And if we are loud about this, maybe FMI will hear us.

You are free to contact on of the administrators by phone or email. We are all FM Developers who have been consulting for many years and will keep the conversation confidential. To do otherwise jeopardizes our position in the community. If we can't answer the question, we'll try to provide a referral to a trusted source. Steven Blackwell (Old Advance Man) is one of the gurus of the industry on security issues. He posts to the security forum on occasion.

-bd (Brent Dussia, Live Oak Systems, [email protected])

There are more databases in use (therefor vulnerable) then we care take care of and fix if something comes up.

But security problems will be found out anyway, so we need to discuss them.

HELP. While working on a File Maker 5.0 file, it closed citing "illigal operation." I had to open it up Recovered, but when I went to drag the Body tab to add additional pages, I could NOT move the tab past the current page length. The file was only about 9 pages long! How can I correct this ASAP (any alternatives are also greatly appreciated). I have about another 4 pages to add and I DO NOT WANT TO REDO THE WHOLE THING (3 days work). [color:"red"]

Dr. Z [color:"red"]

hi , dj ! it is very tempting question. for learning purpose i like to know those things for better protection on my solutions. but like you said if malicious user can learn these thing ... i don't know it would be worth or not for the developers spent so many years. and if you do , i hope you also have protection against it , too. your method has some learninbg curves. that is why it is kind of tempting.

there are 2 parts on this issue. one is talking about how to break the fm security system. and the other is how to prevent it. in common sense, i think there aren't much point of teaching how to hack somebody else's solutions other than learning those techniques. but in the contrary, i think there is a point teaching how to protect or prevent our solutions from those malicious users or hackers.

so what you think about that you teach us how to protect our solution ?

regards,

kyle

OK, I'll write "few" lines on subject.

Dj