Changing jos_ table prefix - worthwhile, problematic? - Joomla! Forum - community, help and support

-

hi

if understand logic correctly, changing table prefix hinder scriptkiddies trying compromise site pasting sql injection parameters url. so, example, if paste sql piece alters admin username, fail because sql statement assumes jos_users, in fact sdrg_users.

my first question whether makes significant improvement security.

my second question whether causes problems. example, there have extensions out there poorly coded, , assume table names start jos_

comments, thoughts?

thanks
brendon

i can't see point. if situation can inject sql code, inject "show tables" , know names of tables. extensions hard wire jos_ not written using standard framework question using them anyway. beg question how know without looking through code.





Comments

Post a Comment

Popular posts from this blog

Christian Home School Programs - Joomla! Forum - community, help and support

-
Image
hello guys, (my first custom template) i got son in accelerated christian home school program. they did not have web site designing , hosting cover fees in trade. website: christian home school programs i've not got content published... the graphics imagination i've installed jumi i have directphp installed mostly custom css layout , i've used css purity seo, christian home shool - 200 million+ organics i have optimized code behind visual design crawlers. any thoughts / recommendations? i'm new custom templating in joomla ears open gurus of joomla richard hey, well done on first custom template. i don't background... @ all. think should going more professional look, maybe isnt repeating on both x , y axis, , isnt shade of blue. as far content goes, there isnt much... site performance good. good luck tim Board index Joomla! Official Sites & Infrastructure Sites & Infrastructure - Feedback/Information ...
Read more

Typo in documentation

-
just mention typo in doc : page "http://arduino.cc/en/reference/attachinterrupt", "four contstants predefined", "contstants" should "constants" quote from: delirii on dec 17, 2011, 05:10 pm just mention typo in doc : page "http://arduino.cc/en/reference/attachinterrupt", "four contstants predefined", "contstants" should "constants" they have "befer" in line 99 , "sucess" in line 263 of liquidcrystal.cpp. don't seem have spell check or care spelling much. Arduino Forum > Development > Other Software Development > Typo in documentation arduino
Read more

captcha in coldfusion MX

-
hi i have been using code create captcha image our forms. works on 1 of our hosting companies 1 of clients uses hosting company runs on coldfusion mx unable work on.  please assist me in letting me know or give me alternative option code.   the code follows   <cffunction name="makerandomstring" returntype="string" output="false">      <cfset var chars = "23456789abcdefghjkmnpqrs">      <cfset var length = randrange(4,7)>     <cfset var result = "">      <cfset var = "">    <cfset var char = "">         <cfscript>       for(i=1; <= length; i++) {           char = mid(chars, randrange(1, len(chars)),1);           result&=char;       }       </...
Read more