Applications or informational pages, distributed via HTTP or HTTPS, using a web server. Pages are typically interconnected by hyperlinks and may contain forms or even entire applications.
Questions tagged [websites]
252 questions
163
votes
2 answers
I found unknown PHP code on my server. How do I de-obfuscate the code?
We've been getting a lot of noise regarding hacked PHP files here, and it's taking a lot of time to answer these questions. In many cases, they are off-topic. We've had a discussion about this on Information Security Meta, and many people want these…
Mark Buffalo
- 22,498
- 8
- 74
- 91
124
votes
4 answers
What is the website checking about my browser to protect the website from a DDoS?
Some sites I visit take me to a page that says roughly, "Checking your browser before accessing example.com. DDoS attack protection by CloudFlare".
What exactly about my browser is being checked and how will that help protect against a DDoS attack?
user133587
88
votes
5 answers
Can "Accept cookie" button in a website be malicious?
I don't remember when this "accept/cancel cookie" button started to be used in websites. Why do they insist on getting users to click on this button?
Can it do any harm to user's PC or to collect any private and sensitive data? Their reason for…
0_o
- 1,142
- 1
- 9
- 19
64
votes
6 answers
Employer makes me use what I believe to be an insecure website for HR functions. What to do?
At my job, to be able to view my paychecks, vacation hours and HR data on myself I need to log into a 3rd party website.
I'm by no means a security expert or expert programmer but I could tell (simply by trying) that I could continue to try…
A. Nony-Mous
- 615
- 1
- 5
- 4
64
votes
11 answers
Why don't websites and devices offer fake logins for hackers?
I was thinking about this earlier this morning and was wondering why websites and devices don't offer fake logins for hackers? What I mean by that is that if a hacker finds out some of your details and tries to log in to a website (for example) the…
Cromulent
- 1,103
- 1
- 9
- 13
58
votes
7 answers
Email received regarding Security flaw in website
I received an email to techsupport@websitename.com (pretty generic email) saying that there was a security flaw in my website etc. etc
My initial reaction was that this was a scam. (How/why did they find our site.)
However, they didn't seem to be…
Welz
- 695
- 2
- 6
- 10
50
votes
5 answers
Should I take over a compromised website from another hacker?
A website (www.blue*****art.com) is trying to attack my server using the Shellshock vulnerability. After doing an Nmap scan on the attacking IP address, I found many open ports. It looks like the website is running Exim, which is vulnerable to…
user67281
- 541
- 1
- 4
- 3
49
votes
6 answers
Is a website published in an obscure directory comparably secure to being placed behind a login?
Let's say I create a microsite for a client that contains confidential business information. We need to place this in a location the client can access, in order for them to approve for launch.
If we place this microsite behind a login, we have a…
CodeMoose
- 601
- 5
- 10
41
votes
5 answers
Are there actions taken against websites that deliver malware?
There are serious tools and services such as Google Safe Browsing for malicious and phishing websites, and others fully dedicated to phishing websites such as Phishing.org.
What is done against these websites (especially the ones that distribute…
user45139
38
votes
5 answers
What does a website see if I am connected on my native IP and then enable my VPN?
As per the question. If I am connected to a website, streaming content from my native IP and I then enable my VPN, what does the website see?
Matt
- 397
- 3
- 3
37
votes
3 answers
I have registered a .com domain and received an e-mail from domainadmin.com
I have registered a .com domain and received an e-mail from domainadmin.com, it looks extremely like a phishing e-mail, but after a research I am ultimately confused whether this thing is legitimate or not, it seems as something new for sure.
It…
redCodeAlert
- 509
- 1
- 5
- 10
33
votes
4 answers
What is more safe for browsing the web: PC or smartphone?
The scenario is: somebody without concern about security is navigating through the web. This person will access doubtful websites, like adult content or media sharing, for example.
Between a pc with Windows and a smartphone with android, which one…
Mycroft
- 747
- 3
- 8
- 23
28
votes
5 answers
How can I safely check whether an email link leads to a malicious website?
Over the last few weeks, I've gotten several spam emails from different friends that only contained links to different websites.
I would like to click on those links and see what's on the website. My reasons are curiosity, the ability to understand…
hamena314
- 2,007
- 1
- 15
- 23
23
votes
4 answers
More than three domains hosted on the same IP address
Not on purpose I did a reverse IP address look up on my site, and it shows that there are three other websites hosted on my server, and now I'm worried.
My web is arturofm.com, and here is the…
Arturo
- 363
- 3
- 8
22
votes
2 answers
If the Charles SSL Proxy shows me sensitive data, is that data insecure/exposed?
Today I was exploring a website used for keeping track of student grades and everything related to school. Basically like a school progress tracker for your child which is used by 90% of schools in my country.
I fired up Charles proxy and connected…
user208234