IP addresses

[LSixer]

You know, I am not usually paranoid, but, I am not comfortable with my IP address being available. I know that the user and the moderator can only see it, but, being in the business, there is always room for hacking. Can we eliminate this feature from the web page? Im more concerned about my failies well-being than myself. Watcha think?

[ginz111]

So your saying you want the user not even to be able to see their own ip address?

[LSixer]

Keep in mind, if this is a major ordeal, lets forget about it. Idealy, the "logged" function should not even be part of the web page. If you just mask it, via xml, php or whatever language is used, the data can be retrieved by a fair to good hacker. I have not examined the layout/make-up of the web page so I am not really speaking intelligently enough.

By day I am a Oracle DBA, and I just received a notice that my software has now ANOTHER set of security patches, 57 of them!!!!! I have already applied dozens and it just scares the hell out of me as to how vulnerable systems in general are. You wont believe but, ANYONE with an internet connection and a few collection tools can break into a Oracle DB. Unbelieveable. I suppose the information I received from Oracle ratcheted up my paranoia a bit.

[ginz111]

Well I do patch the site whenever there is a security update.  If you have ideas or want to examine the code for flaws or changes you are most welcome to anytime Adam.  I trust you 200%.

[LSixer]

We'll see. I suppose we should leave well-enough alone for now and I'll keep it in mind for any ideas. Just got me really worried when I ran through the Oracle updates. Jeez, for a version thats been out three years +. you think they'd have a clue.