Hello and welcome to our community! Is this your first visit?
Register
Enjoy an ad free experience by logging in. Not a member yet? Register.
Page 2 of 2 FirstFirst 12
Results 16 to 20 of 20
  1. #16
    New to the CF scene
    Join Date
    Aug 2009
    Posts
    8
    Thanks
    0
    Thanked 0 Times in 0 Posts
    thanks a lot for moving the post
    Last edited by imlalit; 08-06-2009 at 07:48 AM.

  2. #17
    New to the CF scene
    Join Date
    Aug 2009
    Posts
    8
    Thanks
    0
    Thanked 0 Times in 0 Posts
    so what to do now in that case.
    Is it possible we can disable/hide the directory listing pattern from url in browser?
    please help me out.

  3. #18
    Banned
    Join Date
    Oct 2008
    Posts
    136
    Thanks
    4
    Thanked 0 Times in 0 Posts
    Iframe...

    You stay on the same page all the time.

  4. #19
    Rockstar Coder
    Join Date
    Jun 2002
    Location
    USA
    Posts
    9,074
    Thanks
    1
    Thanked 328 Times in 324 Posts
    Quote Originally Posted by sith717 View Post
    Iframe...

    You stay on the same page all the time.
    Yeah that could work however as others have mentioned hiding the actual URL behind a static URL is a bad idea and will only stop the most novice of users. Not to mention it makes it a major pain in the butt for the users for your site. You make it impossible to ever bookmark any pages or return to a specific page directly. Using frames to keep one URL in the address bar is bad design.

    If your client's security audit says having "real" URLs is bad security then the audit is wrong. What you put in the URL can lead to poor security but that's why you write proper sever side code to sanitize and sanity check all inputs, as abduraooft already mentioned.

    I have a feeling your client and/or you are misunderstanding what the actual problem is that the security audit found.
    Last edited by oracleguy; 08-06-2009 at 07:19 PM.
    OracleGuy

  5. #20
    New to the CF scene
    Join Date
    Aug 2009
    Posts
    8
    Thanks
    0
    Thanked 0 Times in 0 Posts
    thanks for reply

    I'm not misunderstanding to forum or forum's members.I'm finding the solution as client wants.Client simply says that We want to keep one url in addressbar while accessing the site.That is why I posted here the problem and nothing else.


 
Page 2 of 2 FirstFirst 12

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •