Development »

• The development backlog : Vote for new features
• To be integrated
• Development blog
• Languages
• Developer's guide
• Guide de développement

Stay tuned

Recent comments
Podcasted files

Prevention of link spamming

Posted by Bernard on Mar. 1, (popular)  

As reported by Moi-meme, the script that counts clicks to external links is just too smart.

It does check the origin of the request, but accept requests with no origin at all.

This means that anyone can add a link to a target YACS server by just invoking the links/click.php from any browser.

To prevent this, links with no origin are not accepted anymore.

This change will be released with the 8.2beta.

Add a comment ·  Trackback

---

© 2002-2008, Paxer Conseil - login - about this site - privacy statement - Information channels