[TYPO3-jobs] Customers hiring TYPO3 Developers to steal sites
Philipp Wrann
philippwrann at gmail.com
Tue May 6 07:58:20 CEST 2014
Well there is only one way you can prevent.
Development should be done in your own infrastructure
Dont pass any ssh or ftp credentials to your customer until the project is payed.
Deny sql connections from anywhere except 127.0.0.1.
Dont create admin users for customers.
As long as the user cant upload any executeables (eg drop a php file that dumps everything) it would be very hard to steal the website.
If you develop a website and you do it on a host the customer gave you the credentials, then you might have put too much trust in your new customer.
More information about the TYPO3-jobs
mailing list