gameboyz Posted May 24, 2009 Share Posted May 24, 2009 hi this is my first time making a php site for my clan (of a game), I'm only 15 so I have NO experience in database security. so it's expected that my login page for admins to post updates would be VERY VERY easy to hack into. So naturally I'd like to hide that page from search engines; is it safe to use the noindex method only? or should I implement some other things or what.cheers! Link to comment Share on other sites More sharing options...
Darkness Posted May 25, 2009 Share Posted May 25, 2009 There should be some sort of password required in order to access that page. For example: <?phpif($_POST['submit']){if($_POST['field']=="passwordhere"){//allow access}}else{echo "<form method='POST'>Enter the password to proceed.<br /><br /><input type='text' name='field'><br /><br /><input type='submit' name='submit' value='Continue'></form>";}?> ...or something like that. Link to comment Share on other sites More sharing options...
jlhaslip Posted May 25, 2009 Share Posted May 25, 2009 use the robots.txt file to stop legitimate Bots from indexing the page. Link to comment Share on other sites More sharing options...
gameboyz Posted May 25, 2009 Author Share Posted May 25, 2009 There should be some sort of password required in order to access that page. For example:<?phpif($_POST['submit']){if($_POST['field']=="passwordhere"){//allow access}}else{echo "<form method='POST'>Enter the password to proceed.<br /><br /><input type='text' name='field'><br /><br /><input type='submit' name='submit' value='Continue'></form>";}?> ...or something like that. Yup I know, in fact I might be comparing the encrypted version of the password with one in the database so people can register for it. But it'll be hack-able using SQL injection so it's dangerous. Anyway I think I'll use Wordpress, it's safer use the robots.txt file to stop legitimate Bots from indexing the page.Can I use the robots meta tag? Link to comment Share on other sites More sharing options...
jlhaslip Posted May 25, 2009 Share Posted May 25, 2009 I am not certain that the Meta tag would have the same effect. You could try it. Link to comment Share on other sites More sharing options...
Darkness Posted May 25, 2009 Share Posted May 25, 2009 I think Google now ignores meta tags quite a bit because of people attempting to use them to increase ad revenue... but I haven't tried the robots meta tag, so I have no idea if that would work. Link to comment Share on other sites More sharing options...
Synook Posted May 26, 2009 Share Posted May 26, 2009 You should try to make the login page secure in itself, people will still find it and "rogue" (or just badly-coded) speiders may still index it by mistake.Btw Google only ignores the "keywords" meta. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.