Just thinking, may be worth adding the ability to configure where the contact and email a firend logs are saved or just the name of the xml file, anyone that uses this frame work can see all the logs a site has recived which could be bad if they want email addresses.
I know you could delete the data daily but most people wont, could also go in and edit the usercontrols but that would depend on how comfertable they are with editing the code.
Hi Hywel and Petr, Would you mind adding a bug item on codeplex for me please so I can edit the usercontrols so that the path of the XML file is stored in app_data so it can't be accessed directly with a URL to the file.
Security issue for data left in xml
Just thinking, may be worth adding the ability to configure where the contact and email a firend logs are saved or just the name of the xml file, anyone that uses this frame work can see all the logs a site has recived which could be bad if they want email addresses.
I know you could delete the data daily but most people wont, could also go in and edit the usercontrols but that would depend on how comfertable they are with editing the code.
anything i can do to help let me know
Cheers
I don't know cws, but xml data should be saved with .config extension or in app_data folder.
Hi Hywel and Petr,
Would you mind adding a bug item on codeplex for me please so I can edit the usercontrols so that the path of the XML file is stored in app_data so it can't be accessed directly with a URL to the file.
http://umbracocws.codeplex.com/WorkItem/Create.aspx?ProjectName=umbracocws
Thanks,
Warren
Have just added it for you, not sure if it makes sense but any questions or if i can help in some way let me know
is working on a reply...