{"id":5463,"date":"2018-09-11T10:53:09","date_gmt":"2018-09-11T14:53:09","guid":{"rendered":"http:\/\/community.mis.temple.edu\/mis5211sec001fall2018\/?p=5463"},"modified":"2018-09-11T10:53:09","modified_gmt":"2018-09-11T14:53:09","slug":"webserver-serving-swap-files-vulnerability","status":"publish","type":"post","link":"https:\/\/community.mis.temple.edu\/mis5211sec001fall2018\/2018\/09\/11\/webserver-serving-swap-files-vulnerability\/","title":{"rendered":"Webserver serving swap files &#8211; vulnerability"},"content":{"rendered":"<p>https:\/\/webdevetc.com\/blog\/how-to-get-someones-database-credentials-while-they-are-editing-config-files-on-a-live-server<\/p>\n<p>&nbsp;<\/p>\n<p>When editing on a web-server in production with an editor like Vim, that editor will create a swap file which could mistakenly be served to the public. Therefore it is<\/p>\n<p>A) important to restrict the filetype that is being served (you can do this in .htaccess or php config (NodeJS doesn&#8217;t have this problem since files are served from the public folder only and html is templated first)).<\/p>\n<p>B) do not edit on a production server, instead use a staging tool like Git.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>https:\/\/webdevetc.com\/blog\/how-to-get-someones-database-credentials-while-they-are-editing-config-files-on-a-live-server &nbsp; When editing on a web-server in production with an editor like Vim, that editor will create a swap file which could mistakenly be served to the public. Therefore it is A) important to restrict the filetype that is being served (you can do this in .htaccess or php config (NodeJS doesn&#8217;t have this [&hellip;]<\/p>\n","protected":false},"author":14862,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[714826],"tags":[],"class_list":{"0":"post-5463","1":"post","2":"type-post","3":"status-publish","4":"format-standard","6":"category-week-02-its-role-the-control-environment","7":"entry"},"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall2018\/wp-json\/wp\/v2\/posts\/5463","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall2018\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall2018\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall2018\/wp-json\/wp\/v2\/users\/14862"}],"replies":[{"embeddable":true,"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall2018\/wp-json\/wp\/v2\/comments?post=5463"}],"version-history":[{"count":1,"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall2018\/wp-json\/wp\/v2\/posts\/5463\/revisions"}],"predecessor-version":[{"id":5464,"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall2018\/wp-json\/wp\/v2\/posts\/5463\/revisions\/5464"}],"wp:attachment":[{"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall2018\/wp-json\/wp\/v2\/media?parent=5463"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall2018\/wp-json\/wp\/v2\/categories?post=5463"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/community.mis.temple.edu\/mis5211sec001fall2018\/wp-json\/wp\/v2\/tags?post=5463"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}