| |
Feel secure about the information you enter.
Multiple measures have been employed to protect your
personal information.
Please look through the list to the right -->
|
|
| |
If you've lost or forgotten your password, please contact
ME
You'll need to supply me the stored info about yourself
so i can verify you are who you say you are before i can reset
passwords. Reset passwords will only be mailed to the email
address stored in the system for the identified user.
|
|
|
|
|
Everybody is concerned about the protection and privacy of online data...
This is a simple system that does not store or present sensitive personal or financial information.
Although nothing more sensitive than your email address should be entered, This system has been
designed to be very secure to protect even that information.
Here's some areas of concern that have been addressed in the design of this system:
Click a link to open or close a detailed info box. Detailed information appears below the list
- SQL and Email Header "injection attacks"
| SQL and Email Header "injection attacks" |
| Injection Attacks |
SQL Injection Attacks are when a hacker attempts to gain access to the
underlying database by appending SQL Query strings to login information
Email Injection Attacks are when a hacker attempts to use online forms on a web site as an "email relay" for spam.
They do this by appending email headers into form input text boxes.
By properly screening user input and filtering out suspect input the system is secured.
|
- One Way Encrypted password protection for secure user pages
| One Way Encrypted password protection |
| One Way encryption |
When you create a password in the system it is stored in encrypted format.
This is a one way encryption scheme that keeps even the database administrator (Me) from knowing your password.
The only downside of this is that there is no "password recovery" system. If you loose it, I'll need to reset it
and let you enter a new one. A password hint system may in the future but not right now.
|
- Dynamic generation of pages and blocking "web bots"
| Dynamic generation of pages and Robots |
| Dynamic generation of pages and Robots |
Data stored in the database has been secured to
prevent spammers and the like from seeing your info. If pages were manually
updated with new user info and stored on the site that work would be for nothing.
Spammers regularly scour web sites using "Robots" to find email addresses on hard coded pages. Dynamically
generating pages helps prevent this problem. Blocking Robots is another way of preventing spammer
harvesting. Neither technique alone is sufficient, but both together do a pretty good job.
|
- URL hiding, script blocking techniques have been employed
| URL Hiding, Script Blocking |
| URL Hiding, frame locking and blocking source views |
Using scripts and the format of the web design it is possible to
cloak important URL and other info from hackers. It is not fool proof but works quite well. Truly sensitive "system information"
like database passwords are hidden well outside of the web structure so that only root users can access them.
|
|
If you find the site useful and would like to donate to the author..
Click Here |
|
|
|
