Important Notice from AspDotNetStorefront
It is with dismay that we report that we have been forced, through the action of hackers, to shut off write-access to this forum. We are keen to leave the wealth of material available to you for research. We have opened a new forum from which our community of users can seek help, support and advice from us and from each other. To post a new question to our community, please visit: http://forums.vortx.com
Results 1 to 2 of 2

Thread: Outdated Security Audit Links

  1. #1
    SRT is offline Senior Member
    Join Date
    Sep 2008
    Posts
    108

    Default Outdated Security Audit Links

    In 8.0.0 admin module, many of the "Read more..." links in the Security Audit section go to a "page not found." Can you please correct/update these URLs?

    The 'customErrors' element in web.config is set to 'off'. Please set it to 'on' before going Live. Read more…

    The 'compilation' element in web.config includes 'debug=true'. Please set debug to false before going Live. Read more…

    The root directory of your website allows write-access. Please remove write-access before going Live. Read more…

  2. #2
    ASPAlfred is offline Senior Member
    Join Date
    Nov 2007
    Posts
    2,244

    Default

    Those links were from our previous manual, apparently it was changed to a different platform after the release of v8.x. You can correct them simply by editing the links in string resource.

    e.g. admin.splash.aspx.security.CustomerErrors - just edit it and you'll see the actually link from its description.

    From the security audits below, you can change them with this value:

    http://manual.aspdotnetstorefront.co...checklist.aspx