CRON Security

Lou Carey · May 22, 2009

Hi All,

I will be writing a CRON script to update inventory and wish to know if there are particular security measures I should/must follow in order to avoid intrusions? Are there any examples of the current code I can use as an outline/starting point for the security portion of the CRON script?

Thank you for your time,

Lou Carey

Burhan BVK · May 23, 2009

The best way is to not put it in your public_html folder, put it somewhere below that, no one will be able to access it.

Robert G. · May 23, 2009

And avoid running it as root (if you have that access anyway).

Lou Carey · May 23, 2009

Thank you whitelighter and _robert for your advice!

ruilong · May 24, 2009

Also, I can recommend you make a "password" that you store in the database.

Lou Carey · May 24, 2009

Hi ruilong,

Could you tell me how I would you the password in the database?

Thanks!

ruilong · May 24, 2009

use Configure class.
Configure::UpdateValue('NAME OF VALUE', 'password'); to set it from an textbox in configure (if this is a module)
(I may be a bit off on the code since I write from my head now )

then in the cron execution file you get that value from the database Configure::GetValue('NAME OF VALUE'); and compare it to $_GET['password']

in the cronsetup you then set file.php?password=password

Lou Carey · May 24, 2009

Hi ruilong,

Thank you, your suggestion and explanation are well understood and helpful!

Lou

Sign In

CRON Security

Recommended Posts

Lou Carey

Link to comment

Share on other sites

Burhan BVK

Link to comment

Share on other sites

Robert G.

Link to comment

Share on other sites

Lou Carey

Link to comment

Share on other sites

ruilong

Link to comment

Share on other sites

Lou Carey

Link to comment

Share on other sites

ruilong

Link to comment

Share on other sites

Lou Carey

Link to comment

Share on other sites

Create an account or sign in to comment

Create an account

Sign in

Browse

Activity

Go back to prestashop.com