Topic: Hacking into my svManager?

Okay, here is my concern:

I have statcounter placed onto my website homepage.  I can see what page the viewer enters the site and what page they exit the site.  I have noticed one ip address returning on several occassions exiting on this web address-
http://www.mysite.com/svmanager/g15/svc … er_icc.swf

My gallery link is http://www.mysite.com/svmanager/g15
which takes them to the intended gallery.  So my question is how and why are they going that depend in my files? Please advise.

In the meantime, I have blocked their ip address in the control panel of my webhosting account.

Thank you.

Debra

Re: Hacking into my svManager?

It sounds like someone may have clicked 'View Source' in their browser when viewing your gallery and then followed internal links in your page's code. You cannot prevent anyone from doing this (anyone can click 'View Source' on any web page and follow any links they find) but do not worry: no-one will be able to modify or delete any of the files on your web server unless they have your FTP or svManager login details.

Steven Speirs
SimpleViewer Support Team.

Re: Hacking into my svManager?

Hi Steven,

I have not embedded the Simpleviewer into any of my webpages.  I use the page as is from the Simpleviewer program.  When I viewed the link:  www.mysite.com/svmanager/g15 and then did the view source this is what displays:

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
  <head>
    <meta http-equiv="content-type" content="text/html; charset=utf-8" >
        <title>High School Senior</title>
  </head>
  <body>
    <!--START SIMPLEVIEWER EMBED -->
    <script type="text/javascript" src="svcore/js/simpleviewer.js"></script>
    <script type="text/javascript">
      var flashvars = {};
      flashvars.galleryURL = "gallery.xml?nocache=1516614141";
      simpleviewer.ready(function () {
        simpleviewer.load(
          'sv-container',
          '100%',
          '100%',
          'FFCCCC',
          true,
          null,
          null,
          null,
          true          );
      });
    </script>
    <div id="sv-container"></div>
    <!--END SIMPLEVIEWER EMBED -->
  </body>
</html>


What I was wondering is if this viewer can somehow tap into my files and use the swf file somehow for their website?

I appreciate your prompt replies and really enjoy your products.  smile   Thank you!

Re: Hacking into my svManager?

Any user with a web browser can view and download any files you upload (if they know their locations). This is unavoidable (unless you password protect your directory which would be an inconvenience for anyone wishing to view your gallery).
The user would not be able to use the SWF file hosted on your web server due to a cross-domain Flash security restriction. (See this FAQ for details.) Even if the user were to download the file you refer to, it would be useless on its own.

Steven Speirs
SimpleViewer Support Team.

Re: Hacking into my svManager?

Hi Steven,

Once again, "thank you" for your prompt reply.

Debra