home
products
contribute
download
documentation
forum
Home
Forums
New posts
Search forums
What's new
New posts
All posts
Latest activity
Members
Registered members
Current visitors
Donate
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Search forums
Search titles only
By:
Menu
Log in
Register
Navigation
Install the app
Install
More options
Contact us
Close Menu
Forums
MediaPortal 1
MediaPortal 1 Talk
Server and HTPC webconsole
Contact us
RSS
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="joz" data-source="post: 401869" data-attributes="member: 70244"><p>I've heard that one before, but how?</p><p></p><p>How is my LAN at risk? I do not see it. </p><p>Yes, shell access is one part that's an obvious risk to LAN. But I can just set permissions not allowing anything other than what I want to be able to run. PHP even is limited in what it's able to do thru shell because of security risks. Besides that I believe it's possible on windows to allow certain actions (or disallow) of the shell for specific users.</p><p></p><p>How can say some hacker, who's hacking phpmyadmin or my server console get past the confinement of that script? As long as the script has no exploits all is fine.</p><p>I'd like an example if you could provide one, jsimmons. I really don't see any risk at all to my LAN, as long as I'm real careful handeling shell access.</p><p></p><p>what's so hazardous about editing MediaPortal.xml thru the web? As long as the script only touches that file, all is fine, right? Well MediaPortal.xml could get screwed over seriously ofcourse, backups are key <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite1" alt=":)" title="Smile :)" loading="lazy" data-shortname=":)" /> I could also extend that script to write to MediaPortal.xml but always create a backup of the original</p></blockquote><p></p>
[QUOTE="joz, post: 401869, member: 70244"] I've heard that one before, but how? How is my LAN at risk? I do not see it. Yes, shell access is one part that's an obvious risk to LAN. But I can just set permissions not allowing anything other than what I want to be able to run. PHP even is limited in what it's able to do thru shell because of security risks. Besides that I believe it's possible on windows to allow certain actions (or disallow) of the shell for specific users. How can say some hacker, who's hacking phpmyadmin or my server console get past the confinement of that script? As long as the script has no exploits all is fine. I'd like an example if you could provide one, jsimmons. I really don't see any risk at all to my LAN, as long as I'm real careful handeling shell access. what's so hazardous about editing MediaPortal.xml thru the web? As long as the script only touches that file, all is fine, right? Well MediaPortal.xml could get screwed over seriously ofcourse, backups are key :) I could also extend that script to write to MediaPortal.xml but always create a backup of the original [/QUOTE]
Insert quotes…
Verification
Post reply
Forums
MediaPortal 1
MediaPortal 1 Talk
Server and HTPC webconsole
Contact us
RSS
Top
Bottom
