PGO-mapscan-opt icon indicating copy to clipboard operation
PGO-mapscan-opt copied to clipboard

Published 20 hours ago verified publisher icon seikur0

[Request] Authentication challenge for webscript

Open FrozenSocket opened this issue 8 years ago • 4 comments

I've starting accessing the pokesite.py externally and its beautifully handy :) However I'm constantly nagged that there is no auth challenge when visiting the site/server and should someone stumble upon or scan my IP, then this 'may' allow an attacker to expose my system worst case.

Could we have basic authentication on the website?

FrozenSocket avatar Sep 13 '16 21:09 FrozenSocket

I guess I can do that, though your system should be very safe, others can't access anything outside the webres/static folder.

seikur0 avatar Sep 13 '16 22:09 seikur0

Just saw the following in the console log: 194.15.113.31 - - [16/Sep/2016 23:49:04] "GET http://www.safe-scanner.com/remote.php HTTP/1.1"

There website starts off by saying: You probably arrived on this page because you have been scanned by our search engine. We are NOT trying to hack you.

Consider me reassured! lol - Get off ma website nosey :)

FrozenSocket avatar Sep 16 '16 23:09 FrozenSocket

Haha, ikr. Well you're using a free proxy :P

seikur0 avatar Sep 17 '16 07:09 seikur0

You could also use ngrok: https://ngrok.com/ - https://ngrok.com/docs#auth

mcdsojcd avatar Sep 19 '16 16:09 mcdsojcd