|
From: Hannes S. <ha...@yl...> - 2012-10-15 18:52:21
|
"Matthew Carter" <je...@gm...> wrote: > Right now script updates are locked down by IP address, so at this > point no one can update the three scripts I put on unless they spoof > my ip. I'm sure you are aware that the source address in IP is just a text field, so that is not really an authentication. > I realize this may lock some out of their own scripts if ip changes, Also, most people use dynamic IP addresses anyway. Anyway, I don't think any of this is really a problem right now, because I doubt that the Vimprobable user base, which would probably notice quickly enough, is really a worthwhile attack target. I just want to make sure that everybody is aware of the potential risks. Looking forward to see how this develops! Hannes |
