Web Security/CDML? Check this out...

[Charlie Boisseau]

Hey All...

If you were around on this forum a couple of years ago you might remember a (really long) thread about FileMaker web security issues. Well, since then, I haven't posted here and I'm glad (or not) to say that nothing has changed! The issues still haven't been resolved and I'm still working on ways to make the Web Security / CDML experience easier.

So.. I give you: D-Base 1.4 (for Mac, Mac OS X and Windows)

It's a tool to let you remotely see your database names, layouts, scripts and fields. It basically shows you how venerable your hosted databases are. For this version, I wrote in a facility for drag-and-drop CDML.

Anyway.. Let me know what you think.

Cheers.

Charlie

[Garry Claridge]

Well Done.

Good to see you back Have you finished school yet

All the best.

Garry

[Charlie Boisseau]

Thanks! Yeah - I'm starting my second year of Uni in September.

[djames]

Charlie, this is of course worrying.

I have a webshop running with FMP6U, and you see everything while using the WebComp. Do you have a working solution to increase security on this issue?

(this being that I can leave ALL CDML tags etc intact)

[Anatoli]

Do only "Exact search" in all queries.

Filter out the CDML and XML "hacking" syntax.

Much better will be to use Lasso from Blue World, Powerful web engine for FM and SQL databases.