Jump to content
Search In
  • More options...
Find results that contain...
Find results in...

lubblig

Member
  • Content Count

    677
  • Joined

  • Last visited

Everything posted by lubblig

  1. Oh, thank god! I have just started (a couple of weeks ago) a project myself with a MySQL DB and it took me a while to setup and follow a bunch of different guides to secure the DB and the server itself. I'm using the MySQLi one so I guess I'm fine? Thank you for the explanation!
  2. I had no idea of this, do you have a source for this? I'm not saying you're wrong just wanted to see if there are any articles on the matter since I had not heard of it before. When did they stop supporting it?
  3. I found that, but I didn't think bcrypt was an hashing "type", just an algorithm generating it. So is bcrypt similar to what sha1/sha256 is (but better/safer)?
  4. I've got this PHP code to generate a password hash, $hash = password_hash($input_password, PASSWORD_DEFAULT, ['cost' => 10]); But I'm having troubles finding what type of password hash is used. I've tried googling it but without finding what it is (might just be me using bad search terms). I'm assuming it's not MD5 or SHA1 since that's not considered safe anymore but I want to be sure and I want to know what's actually being used, so if anyone could tell me (and preferably link to a source that tells me what's being used), I would really appreciate that! Thanks!
  5. Thanks! Why PDO? I don't know what it is so I'm not questioning it, I'm just curious what I'll benefit from it. Is it more secure or easier to use? If so, why? I'll try to do some reading on it right now but I'd love to hear your input on it!
  6. In your link, they use the following code in the .htaccess file: # In case there is no PHP, deny access to php files (for safety) <IfModule !php5_module> <FilesMatch "\.(php|phtml)$"> Order allow,deny Deny from all </FilesMatch> </IfModule> # the following should be added if you want to parse .php and .phtml file as PHP # .phps will add syntax highlighting to the file when requesting it with a browser <IfModule php5_module> AddType text/html .php .phtml .phps AddHandler application/x-httpd-php .php .phtml AddHandler a
  7. Would this be done with the .htaccess file? If so, how?
  8. I'm trying to understand how PHP works and how to secure it when connecting to a MySQL database (DB created with PHPMyAdmin). I found this example on W3Schools: <?php $servername = "localhost"; $username = "username"; $password = "password"; // Create connection $conn = new mysqli($servername, $username, $password); // Check connection if ($conn->connect_error) { die("Connection failed: " . $conn->connect_error); } echo "Connected successfully"; ?> And I'm kind of skeptical to the whole having the password stored like that in plain text. Is this the way to do it and
  9. Ok, yeah it might be the initial backup that Crashplan didn't "like" being too large. I'm not sure, I just remember reading it on the datahoarder subreddit that some people were having issues with CP a while ago. So not really any proof just what I've heard from others.
  10. I've heard that Crashplan isn't that great with lots of data. Not sure if this is true or not since I don't have that much data to even test it. But their upload speed isn't that great, that I know (at least to me, might be different in other areas). I've heard good things about Amazon Cloud Drive (ACD) but I don't know if there are any limitations to storage.
  11. It depends on how many devices you'll be using simultaneously. But if you're only going to stream/transcode to one device at a time, a fairly low powered computer should work. If you are going to transcode, you're going to need a somewhat beefier CPU (as previously mentioned, if a device doesn't support the file format/codec/bitrate etc, the streaming software will have to transcode the file to make it playable on that device). I recommend using Plex for streaming as it will get meta data (cover art and information etc) automatically for you and works on most devices out there. It
  12. So I've got a computer that I have at my parents house to perform backups of my files to. The specs are: Asrock E3C226D2I Pentium G3240 Generic Samsung 8GB ECC ram @ 1600MHz EVGA Supernova GS 550W PSU 2x WD Red 6TB, 2x WD 8TB & 1 WD 3TB Samsung 850 EVO 250GB (boot drive) Bitfenix Phenom Mini It's running Windows 10 with Crashplan to backup. It's cooled properly and the CPU is around 40-50 degrees Celsius and the HDD's are at about 30-45 degrees Celsius idle. It crashes roughly every 24 hours. I've got Teamviewer installed on it th
  13. It's over already http://www.ign.com/articles/2016/09/06/battlefield-1-beta-gets-an-end-date
  14. Yeah, I've been meaning to learn Git and use Github but it seems so complicated. I might just have to start learning it. It was a couple of years ago since I looked at it so there may be better tools/tutorials than what I could find back then. Good tip btw!
  15. Yeah I'd think that's best. Since I've never used a domain to redirect to another URL (only hosted my own server with domains), I'm not sure how it works or if it works. You should look into it and see if you can get a domain that redirects that works with the "web.DownloadString" code. As what I've used before has been more like hosting the textfile on my server and accessing it via "example.com/version.txt" and not have it redirect from a subdomain like version.example.com to onedrive.ms.com/version.txt. The problem I can see here is that the DownloadString doesn't work as it wan
  16. Hosting at home I agree with, I'm doing it right now and there are plenty of tutorials on how to run Apache on a linux machine. I've never used a .tk domain before but as I was reading a guide by Godaddy, they claim that .tk domains cannot be forwarded. (source: https://se.godaddy.com/help/manually-forwarding-or-masking-your-domain-name-422) This will only be a problem if you plan on hosting the file with a cloud service. If you host at home it shouldn't be an issue (I think).
  17. Unsure, the code should likely work. That is very simple for you to test. What I'm unsure of is if the URL will change if the file is updated with new content. I don't think it will but it's a possibility. Also, now you are dependent on that this URL doesn't change. Which could happen, Microsoft may change what servers the file is stored on or something, giving you a new URL. If you instead were to buy a domain, lets say "altech.com" or something, and point it to the cloud hosted file (https://1drv.ms/t/s!Ar65S5uonmfNmPhZqSrE3JEbAGju2Q). Then if the URL changes or in the unlikely s
  18. I would agree with @HarryNyquist that not having it auto update but rather check for updates and if the user wants to, direct the user to the download page. I've done a similar thing in the past and the code I used was something like this: WebClient web = new WebClient(); //Download the .txt file and save it to a string string update = web.DownloadString("http://example.com/latest_stable_version.txt"); //Compare downloaded string with the applications product version if (update.Contains(Application.ProductVersion)) { //If the downloaded string contains the current product version
  19. Why do you want a VPN? Free VPNs tend to be extremely bad for privacy (some might even steal login credentials etc). Since a VPN works by routing all of your traffic via the providers servers, they will see everything. The reason the free ones are usually bad for privacy/security is that they have to make money somehow. This is likely by selling private information about you and your browsing habits to advertisers or similar. While a paid VPN (mostly, there are bad privacy/security VPNs that are paid too), is already being paid and wants to keep you as a customer, they tend to not
  20. Maybe I'm missing something and it might have a tighter integration with Windows (that might be great and/or a huge privacy issue), but this general idea is something I use quite often with pushbullet (I'm sure there are other similar tools). It doesn't keep records of everything that is/has been in the clipboard but if I want to send myself something to use later I can easily paste and send it to myself. It's really easy to do. And to be honest, it isn't all that different from sending myself an email. What is special about this? I'm not saying it's bad, I just feel that it kind o
  21. Seems like there is another bug in LastPass, although this one has yet to be patched. It's a Zero day exploit that allegedly enables a remote hacker to completely compromise a Lastpass account So far there aren't really any proof as far as I can tell, only a security expert claiming the fact. Although it's the Google employee (Project Zero team), Tavis Ormandy, who made the report and has reported the bug to Lastpass, so it's likely not a hoax. Since it has just been found out though, the "how it was done", has yet to be released for Lastpass to have time to patch it. Source: http
  22. Great, thanks! That's true, didn't think about that!
  23. Oh ok. Is PHP necessary to get the database info or would it be possible to use Javascript? I will have to do some reading about this but if I get any further questions during the process, would it be ok to send messages to you about this? About this: The C# application I want to use for sending the statistics to the mysql database does not have ports open. Is this what you meant? And is it ok for it not to have open ports?
  24. The website will be hosted on an apache2 webserver on a Linux Ubuntu Server I currently run at home on a dedicated machine (always on and only for that). Port 80 is already open at my house for the webserver. It's the server/computer I have at a friends house I'd like to avoid opening ports on. So the webserver has port 80 open, the machine I want to retrieve statistics from I would like to avoid opening ports for. When I previously ran a webserver at home, I did have phpmyadmin installed since I installed the LAMP package. But I've since then reinstalled and manually installed all
  25. Ok, how? I've never really worked with databases before. Do you have any recommendations for a good lightweight database that runs on Linux? And any tutorials on how to actually send the data (mostly strings and integers) from a windows based C# program to an external database on Linux. I've never done anything like this before so I don't really know what to Google as I don't know the proper terminology etc.
×