Potential Security Risk: Database Backups

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • Scott MacVicar
    Former vBulletin Developer
    • Dec 2000
    • 13286

    Potential Security Risk: Database Backups

    It has come to our attention that some customers have been leaving database backups generated from the admin panel in public accessible folders on the web server. It is recommended that all backups are saved in an alternate folder below the web root so that unauthorised users are unable to download this backup.

    In an attempt to resolve any confusion in future releases we have suffixed the database backups with a random 5 character string and a more visible warning to administrators within the backup page.
    Scott MacVicar

    My Blog | Twitter
widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
Working...