Think of these pages as a nice "README" you can lock them down if you want . I know they look bad but they are harmless from what I can see, you cant actually upload anything via the forms, theyr'e just there for testing purposes and if you try and access them from a another machine you will get the message "The test form is only available for requests from the local machine." I don't think this is anything to worry about. It's very rare that something like that would slip under the radar.
Securing backend services
Hey.
We were asked by a client to secure the webservices that are available at /umbraco/webservices/codeEditorSave.asmx
Why are those publicly available? Apparently you don't need to login to the backend to access them?
Any tips and suggestions are welcome.
Thank you. Kris.
Hi Kris
Think of these pages as a nice "README" you can lock them down if you want . I know they look bad but they are harmless from what I can see, you cant actually upload anything via the forms, theyr'e just there for testing purposes and if you try and access them from a another machine you will get the message "The test form is only available for requests from the local machine." I don't think this is anything to worry about. It's very rare that something like that would slip under the radar.
Regards M
is working on a reply...