Both BIE and PostFeedr use a /data folder to store data files that contain the logins and passwords to your indexer blogs. Although it’s smart to place your BIE and PostFeedr scripts into hard-to-guess directories, sadly most users put them in obvious subdirectories – like /bie – anyone familiar with BIE can find the files – and your blog logins and passwords.
Here is a simple measure you can take to protect this folder from prying eyes. Just download this file for free – put the .htaccess file that comes in this zip file into the /data folder of your BIE or PostFeedr install. Remember – PUT IT IN THE /DATA FOLDER ONLY! Now only you can see the contents of the files via your ftp or cpanel.
This is going to be a very important change as we roll out our next product – it’s going to be called Full Metal RSS, a Full RSS feed extraction script that you run on your OWN server – and it’s going to change everything about how you use BIE (and competing products as well). Securing this folder will be very important when using this new script. But it’s important for you now, as well. We are testing Full Metal RSS this week – and will be releasing soon.
In the meantime, apply this security measure to your BIE and PostFeedr scripts today (free download) – it will take less than a couple of minutes, and it will make your system much more secure. If you bought either BIE or Post Feedr after February 14, 2011 – this feature will be built in to the scripts, no need to download this fix.
Related posts:
{ 2 comments… read them below or add one }
Full Metal RSS – can you give us some more details on this… intriguing….
I’ll be posting tomorrow on this – It’s going to be a pretty big deal.