I manage two websites where I use phpFormGenerator. After using the forms for about a month, directories are disappearing from each place. On one site, it's the entire "use" folder. On another it's the folders within the use folder.
Poof. Gone without a trace.
I successfully uploaded all my files again, and a week later they're gone again.
I've been communicating with my webhost, but tech support says there's no reason why they would have deleted the files.
So is phpFormGenerator self-destructing on me? There shouldn't be a time limit, I mean it's free to use, right?
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Entirely free to use but also entirely hackable without some simple security measures.
1.) Remove the generator from your site when you are not using it or provide some password protection so tha tonly you can use it. The generator allows you to delete forms. If anyone can access the generator then anyone can delete your forms. Note that this is not an issue for Version 3.0 because the generator is has not been released.
2.) Do not leave your forms in the use folder. The install states that 777 permissions are required for files and folders. I don't happen to agree but this does eliminate certain issues on some web hosts. I do all my form development on my PC and only upload finished forms to my sites.
3.) Most times my forms are integrated onto a standard html page but occasionally they are standalone html pages. The files reside in the root of my site (this is easy when you only have one form). Since I know standard protection methods exists for this folder I know that no one can ever delete a form from this location.
4.) In general you need to protect the files and folders of anything you do not what the world to have read/write, and by definition delete, access to. This is true for all files and folders.
Learn how to implement standard and simple security measures for your site. It is TIME WELL SPENT!
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Now that you laid it all out, I understand how my approach to using phpFormGenerator was rather naive. Yes, I began by using the generator to make my forms, but I made so many code changes that I don't want to use the generator again anyway.
So I've moved my vital files and dumped the 777 folder and all the non-essential files. It looks like this should work for me.
Thanks again,
Mike
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
I manage two websites where I use phpFormGenerator. After using the forms for about a month, directories are disappearing from each place. On one site, it's the entire "use" folder. On another it's the folders within the use folder.
Poof. Gone without a trace.
I successfully uploaded all my files again, and a week later they're gone again.
I've been communicating with my webhost, but tech support says there's no reason why they would have deleted the files.
So is phpFormGenerator self-destructing on me? There shouldn't be a time limit, I mean it's free to use, right?
Entirely free to use but also entirely hackable without some simple security measures.
1.) Remove the generator from your site when you are not using it or provide some password protection so tha tonly you can use it. The generator allows you to delete forms. If anyone can access the generator then anyone can delete your forms. Note that this is not an issue for Version 3.0 because the generator is has not been released.
2.) Do not leave your forms in the use folder. The install states that 777 permissions are required for files and folders. I don't happen to agree but this does eliminate certain issues on some web hosts. I do all my form development on my PC and only upload finished forms to my sites.
3.) Most times my forms are integrated onto a standard html page but occasionally they are standalone html pages. The files reside in the root of my site (this is easy when you only have one form). Since I know standard protection methods exists for this folder I know that no one can ever delete a form from this location.
4.) In general you need to protect the files and folders of anything you do not what the world to have read/write, and by definition delete, access to. This is true for all files and folders.
Learn how to implement standard and simple security measures for your site. It is TIME WELL SPENT!
Thanks so much for your response!
Now that you laid it all out, I understand how my approach to using phpFormGenerator was rather naive. Yes, I began by using the generator to make my forms, but I made so many code changes that I don't want to use the generator again anyway.
So I've moved my vital files and dumped the 777 folder and all the non-essential files. It looks like this should work for me.
Thanks again,
Mike