Secure Wiki - is it secure from spiders, wget, et al?

So far I have a private group wiki up and running, no problem. It runs over HTTPS and requires authentication (ACL). Now what I'm wondering here is whether spiders are able to peruse the wiki's content? As you may know, not all spiders abide by a robots.txt. Worse yet, there are web site 'grabbing' tools (e.g. wget) that I'm sure any proficient user and certainly hackers know about. So I'm wondering just how private and secure my content really is?! (Aside from being a little lazy from testing this myself, even if I did, I may not think over every angle.)
On a slight tangent, my sub-domain (DDNS) does not show in Google... that's good for now, but security by obscurity is mediocre. I have seen hacker attempts (mostly foreign) and (D)DOS attacks so there's good reason to ask and it seems no one else has asked this question yet.
I'd like to hear your thoughts and experience ...
PS: At the moment, my server (latest version, all patches/updates) is set up for fun and learning.

If you are connected to the Internet, you will get attacked. Usually within an hour of two of first connecting your host, and often less.
The use of Dynamic DNS or static DNS is not relevant to attacks. DNS is (for the purposes of this discussion) a convenience for humans; it's a convenience that allows you to avoid remembering a sequence of four numbers. (Yes, DNS is also used for network security, but that's fodder for another discussion.)
Access Control Lists (ACLs) are different from authentication; authentication is the primary, then the ACL is considered. (You need the Who before the What Access, in terms of access control.)
Authentication can reduce the success of certain web-specific attacks and site scrapers, but does nothing for port probes and port-level protocol attacks.
The Google site indexes are commonly used to attack web sites. Google is far from the only means used to attack your site, though.
Google and the googlebot honor robots.txt, as do most other legitimate bots and spiders and crawlers. There are large numbers of bots that don't.
Consistent and complete and current data archives are a key part of data security, and oft neglected. These archives are a way that you can use to recover from a (successful) attack.
Here? Either keep your site behind certificate- or password-based security, or (as mentioned) use a VPN. And if your site is behind either of these, then Google can't reach and won't index your site.

Similar Messages

  • Error from EAS - "refreshing security from Shared Services failed"

    Hi,
    I was using Native only security in HSS for Essbase 11.1.1.3 and EAS allowed me to Refresh security from Shared Services. (Essbase security was already externalized to HSS.)
    However, after I added "MS Active Directory", and provisioned a MSAD user to a native Planning group, EAS errors out with "refreshing security from Shared Services failed" .
    I checked Essbase security and that MSAD user is not added to Essbase.
    From Essbase Log I see:
    Essbase failed to get roles list for [ESB:Analytic Servers:servername:1] from Shared Services Server with Error [32:1062:Failed to connect to the user directory [ HSS'sMSADname].
    I then tried to remove MSAD from our H Shared Services and see if this problem goes away. However, MSAD still shows on the left panel menu in H Shared Services. How can I get rid of MSAD?
    Any suggestions?
    Edited by: user643332 on May 12, 2010 12:05 AM

    Hi,
    Are you sure you have removed it from shared services, you may have just disabled it.
    You must restart the shared services application server to apply any changes made.
    Cheers
    John
    http://john-goodwin.blogspot.com/

  • Migrating Security from Native to External Authentication mode Servers

    Hi All,
    I am migrating applications from V7, V9 (doesn't use Shared services) to V11 (Shared Services Enabled) Essbase server.
    I am able to migrate the application definition using the Application Migration Wizard.
    Take level-0 export from the source server & load on the target server & do the default-calc or series of custom calcs depending upon the application's maintenance process.
    Using the Application Migration wizard, we can also migrate security only if both Source & Target servers use Native Authentication mode.
    This can be ruled out in my case as only Sources are native & Target is Shared services enabled.
    Here are few tools available to do bulk provisioning on a Shared Services enabled Essbase application -
    1. MAXL - Works great - But too tedious to create the MAXL statements based on the security definitions on the Source servers.
    2. CSS Import-Export utility - I heard it works only when both Source & Target are Shared services enabled. Can this be used for my case. Also heard many didn't find success with this one.
    3. LCM - Not sure if this can be used for security.
    Are there any other utilities?
    Has anyone done similar migrations before? Please let me know the best practice to do this.
    Appreciate your thoughts.
    -Ethan.

    It is much easier to go about that method, it is not always 100% successful with groups/users but gets most done.
    If you are past that stage then maybe try using the advanced security manager to extract security from your source environment.
    Then you could use the CSSImportExport Utility, first create a template from the information you extracted from your source and then run use the utility to provision users in the new environment.
    There are obviously other ways but that is the way I would prefer if using Shared services security.
    Cheers
    John
    http://john-goodwin.blogspot.com/

  • Refresh security from Shared Services fails - System11

    Hi All,
    WHen refreshing the Essbase security from Shared Services in System 11 we get the following error:
    Error 1051522: Essbase failed to get group's member tree with Error [CSS Error: Unknown error: Could not get exception message from exception object]
    We see the same error in the Essbase log.
    In the Shared Service Security CLient.log we get the following warnings:
    2009-03-03 16:12:58,294 WARN [Thread-108] CSS dll either not found in java.library.path or can't be loaded[Root Cause: D:\Hyperion\common\CSS\9.5.0.0\bin\css-9_5_0.dll: Can't load IA 32-bit .dll on a AMD 64-bit platform ] com.hyperion.css.spi.impl.ntlm.NTLMTrustedDomain.<clinit>(Unknown Source)
    2009-03-03 16:12:58,294 WARN [Thread-108] Error initializing trusted domains or the workstation name.[Root Cause: getNtTrustedDomains ] com.hyperion.css.spi.impl.ntlm.NTLMTrustedDomain.<clinit>(Unknown Source)
    Has anyone come across this?
    Thanks for your help.
    Seb

    Hi Seb,
    I take it you are using NTLM as your external authentication.
    The error message means that it can't see css-9_5_0.dll in the path, if you are on windows make sure the path contains <drive>:\Hyperion\common\CSS\9.5.0.0\bin\
    If it doesn't update the environment variables, not sure if you need to reboot it may pick it up straight away, you can check by going to a command prompt and running echo %path%
    Cheers
    John
    http://john-goodwin.blogspot.com/

  • Error migrating Security from Shared Services.

    Hi,
    I was using Hyperion Planning 9.3.1's in Import/ Export utility in D:\Hyperion\common\utilities\CSSImportExportUtility\cssimportexport\importexport\CSSExport.bat. I'm trying to export Security from Shared Services into xml format. I get the following error message:
    Malformed \uxxxx encoding
    Anyone with similar experiences? Hyperion's impexp.pdf makes the steps so complicated!!

    Answering my own question:
    Since I am in Windows, I was using backslashes in my paths when I updated file:
    importexport.properties
    The error went away after I changed the backslashes to forward slashes in all paths.

  • EAS Console - Not getting the option "Refresh security from Shared Services"

    Hi,
    In EAS Console 11.1.2.2, I am not getting the option "Refresh security from Shared Services" when I right click on Security (under Essbase Servers).
    However, I can see this option via EAS Console 11.1.1.3 (current existing version).
    Could you please let me know how can I get this option in EAS Console 11.1.2.2? Is this by any chance related to the option "Externalize Users"?
    Thanks in advance.

    Thanks a lot join for this information and your kind support .
    One more question:
    The owner of the Planning application is user 'hypadmin'.
    I can see the SIDs of user 5001 a little different in both the versions. Is this ok?
    Hyperion Planning 11.1.1.3 (Existing Environment)
    USER_ID     SID ROLE SYNC_PSWD OFFLINE_ENABLED HUB_ROLES
    50001          native://DN=cn=0fa19f8241602600:3b78a0e0:130926693d2:-78ba,ou=People,dc=css,dc=hyperion,dc=com?USER 3 2 0 5019
    Hyperion Planning 11.1.2.2 (New Environment)
    USER_ID     SID ROLE SYNC_PSWD OFFLINE_ENABLED HUB_ROLES
    50001           native://nvid=54aec0428a3ba591:-44b7ca9b:13f03c114d2:-5d99?USER 3 2  4507
    I have not yet performed "Externalize Users" yet in the new environment (11.1.2.2) throgh EAS Console. Is it required in the newer version 11.1.2.2?

  • Essbase EAS - Refresh Security from Shared Services

    Hi All,
    Just went live with Essbase. We are using MSAD Groups in Shared Services for our users. I noticed that if we add a new user to a provisioned group, they don't automatically get access to Essbase. I believe I have to select 'Refresh Security From Shared Services' in EAS. I am nervous about doing this with users in the system as I don't want to accidentally boot them out. Is there any risk? Reports stopped? Users forced to logout? Smartview implications?
    I feel like I did it before and disrupted some users during development but I am not sure.
    Much Appreciated,
    Mike

    Thx. I just did it and it didn't seem to disrupt anything. I tested with a user with a smartview open, a report running and a WA dashboard on screen. It did mention that after refreshing the essbase server would be disconnected and i would have to reconnect but it didn't actually boot me out or disrupt any process.
    I guess it's okay to do on a live production system. ?
    Thx,
    Mike

  • Refresh Security from shared services.

    Hi
    When ever there are any changes in the security at shared services(LDAP) , I am doing a refresh security from shared services(@EAS)
    -in order to get these changes from shared services.
    Which is taking 30 minutes refresh ever time in our systems.
    Is there any other way to make quickone?
    Version - 11.1.1.3
    Thanks

    strange? We are still on 931 (Essbase on 9.3.1.6) and refreshing security is not necessary at all any more. It is even deprecated functionality. I always though that 11 did not have it too.^^^The end (or most of the end) of Essbase.sec came in a late patch of 9.3.1. It isn't there yet in 11.1.1.3, I think. It is in 11.1.2. There was not a lot of fanfare about the change although it's there in the patch notes.
    Regards,
    Cameron Lackpour

  • Refreshig security from shared services

    let us assume that we are creating 5 users in shared services and provisioning them with different privileges. when refreshing these users security from shared services to essbase , i need to refresh the security of only one particular user role, how can i do that?

    if using 9.3.1 later version u can use Shared servicves patch whcih will automatically update the security
    or esle right clik on EAS security > refresh security from shared services > all users or currecnt users
    which will update ur security
    Refresh each user or group individually using MAXL command:
    alter user username sync security with all application;
    alter group groupname sync security with all application;

  • Removing Security from PDFs in Batch (v10)

    Using Adobe Acrobat Pro X.  I need to remove the security from multiple PDFs with the same password.  I found instructions online at: http://blogs.adobe.com/acrobatforlifesciences/2010/04/removing_security_from_pdfs_in/
    However these instruction do not help as the command have changed.  Also unable to set the Action Wizard to accomplish the task.

    koshwink wrote:
    Do you know if upgrading from Acrobat Pro 7.0 to 9.0Pro would help resolve this issue,
    Upgrading will not resolve that issue no.

  • Essbase Refresh security from SS failed

    Hi,
    we are getting the error while refresh security from shared services from Essbasse....
    "Refreshing security from Shared Services failed"
    In essbase error log can see below.....
    Error(1051522)...Analytical Services failed to get group's member tree with Error [Failed to create an initial directory context for MSAD]
    Please help.
    Thanks.

    Thx. I just did it and it didn't seem to disrupt anything. I tested with a user with a smartview open, a report running and a WA dashboard on screen. It did mention that after refreshing the essbase server would be disconnected and i would have to reconnect but it didn't actually boot me out or disrupt any process.
    I guess it's okay to do on a live production system. ?
    Thx,
    Mike

  • Unable to clear all security from 9.3.1 Planning outline

    Hi,
    I am trying to clear all security from Planning outline. I have only one line in secfile.txt
    HP_groupId,Gross Profit,READWRITE,@IDESCENDANTS
    Then I ran
    D:\Hyperion\Planning\bin>importsecurity "PLAN2,admin,password,,,SL_CLEARALL"
    But there is still security in Planning outline. What am I doing wrong?
    I even restarted the Planning service.
    (hp_admin.pdf is not clear how this works)
    Alternatively, should I just clear all data in HSP_ACCESS_CONTROL table? I have a backup of that table.

    Hi,
    What happens if your secfile.txt is empty, what is logged to the command window, it should be something like
    Mon May 11 18:58:44 BST 2009 :: Logged in successfully
    Mon May 11 18:58:44 BST 2009 :: SL_CLEARALL flag set....
    Mon May 11 18:58:44 BST 2009 :: Delete all the existing Access Control.
    Mon May 11 18:58:45 BST 2009 :: Setting Access controls....
    I know there was some problems with earlier versions of 9.3 though it was meant to be fixed in the first release of 9.3.1
    Security access is not deleted if ImportSecurity is run with this argument: SL_CLEARALL.
    (8-523251655)
    Is your version of planning patched to the latest patch release?
    Cheers
    John
    http://john-goodwin.blogspot.com/

  • If I have more than one secure website open with different windows, is the information I provide on one website secure from the other websites?

    The question really says it all. For some purposes, it would be helpful to have more than one password protected website open at the same time so I can go back and forth between them. However, I don't want to risk my passwords and other information being available in the process.
    Thanks for your help.
    Kip

    Yes, they are secure from each other.

  • How to migrate security from 1 bobj instance to another

    Hi ,
    I have a requirement
    how to migrate security from 1 bobj instance to another
    Please help me for the same .
    Regards,
    Abhishek

    Are you using Win AD groups or Enterprise groups to apply security?
    What is the BO version of source and Destination?

  • RV180W Router -Configuring network secure from open wireless

       I would like to set up an open wireless network for web access only and keep the 2nd WPA wireless network and the internal wired network secure from this open network.  Not finding any clear indication of how to do this in the manual.  Tnx for any advice.               

    Amjad - you were correct about VLAN being the answer and I eventually figured it out.  Since this router provides multiple wireless networks, I was surprised that the manual didn't outline how to do this since creating a public and private network would be one main reason to buy this product.
    The default setting is for everything to be on VLAN1.  I created a 2nd VLAN for the open wireless network with a different IP subnet and defined a DHCP range and once I figured out that "Inter-VLAN Routing" needed to be enabled on both VLANS, then everything worked.  I suppose that "Inter-VLAN Routing" is how VLAN 2 gets across to VLAN 1 and the gateway, but it doesn't allow connections to anything on VLAN 1 except the gateway.  This is what I wanted.
    Thanks again.

Maybe you are looking for

  • Can no longer reply to instant message

    I've been instant messaging with a friend for awhile, but they can no longer reply.  They see the message but can't reply?  Suggestions....

  • Weblogic 8.1 compatibility with websphare MQ 7

    Hi ALL, I would like to know is weblogic 8.1 is compatible with websphare MQ 7? if yes than what i can do for compatibilty and if no than what would be the solution

  • Is OCS a real File system or Virtual file system?

    Hello gurus, I would like to ask pros some fundamental questions regarding OCS. 1. Are files and folders in ocs are stored as real system files and directories in OS somewhere ? 2. Are the files or folders all all maintained in database itself? We ar

  • Problems with Dynamic Link and Render Farm

    We have a 10-node render farm that we use for all of our AE renders, and it works great, so we know the farm isn't the issue. But if we place a Premiere sequence into an AE file and attempt to send the After Effects file to the render farm, we get th

  • Best macbook/OS to play Shockwave 10 game with Havok?

    I have a Shockwave 10 installer already for Mac. just need a power pc/non intel, classic Macbook to install it on... I'd like to look at some of my old games. it would be great to pick up an old notebook to do so. THANKS!!!