Github. comlpreteritedachuwang looked at the whole server. How did this happen? The content in readme should have been available in the past. that is to say, how can I use git for version control? As well as the source code of the server, are you familiar with the architecture, adoption technology, security, and code specifications of the server? Https://github.com/lpreterite/dachuwang
I checked that the entire server has been installed. How did this happen?
The content in readme should have been available in the past. that is to say, how can I use git for version control?
As well as the source code of the server, are you familiar with the architecture, adoption technology, security, and code specifications of the server? Reply content: the frontend is okay, that is, the backend PHP is a little amazing.
1. the framework used is relatively old, and the coding specifications are somewhat OUT. the namespace is not used for the entire project because of non-compliance with the PSR specifications. although annotations are used, most of them do not comply with the PHPdoc format, therefore, IDE (including Subl) cannot be used to improve coding efficiency. it is a bit painful to develop and maintain this project.
2. the following http forwarding method is widely used internally for decoupling:
// User edits in the CRM subsystem are forwarded to $ return = $ this-> format_query ('/user/edit', $ _ POST) under user/edit in the S system ); $ this-> _ return_json ($ return );
If no one asks me, I will not ask myself.
Looking at the rough view, this is not so much a leak as a company's planned open source.
Let me hear the following:
1. if this project is leaked, the group has issued an alarm and it is estimated that the parties have been arrested, rather than asking you to talk about it.
2. read the github account. it is not like a small account, but a regular account. Generally, the regular number is easy to find the owner. If this code is stolen, it is usually used to directly compress a package and throw it to the internet. you can name it "XXX Leaked Source Code" at most, it is impossible to release github. this is the case only when IQ and EQ are low.
3. let's take a look at the readme. the above content is clearly written. even Angularjs has taught us how to use it. Similarly, this is a great respect (silly) Industry (forced) will thieves do this?
4. source code is open-source or open-source, which does not mean unsafe. In fact, I think the label here is "PHP". in PHP, how many forums are using DNZ on the Internet? How many frameworks use ThinkPHP? These items are open-source. can you determine that they are insecure?
5. since the code dare to open source code, I believe that it also has enough confidence in its own code, at least it should not have eval ($ _ GET ["e? Maybe someone else's company has changed the code, abandoned it, and then threw it out.
Above ~~ An employee of our company accidentally backed up his github after leaving the company, and was quickly maliciously fork by gdby, while gdby also leaked Suning's client code, I always feel I was implicated. (although I have left the company, code leakage is none of my business. 233
In addition, some people have said that they have been doing things for several years. In fact, these things have only been written for half a year (so you can infer from time to time that some 2331 companies are hyping themselves to be famous.
2. retired employee so show
3. Hao employees
You need to know that it is not easy to leak it out. First, let's take a look at it. the module is clearly divided, the code format is very standard, and the code quality is quite good. it is worth learning. It's actually a company. after several years, I 've accumulated some code ~ There is really no patience to study it carefully, and there is nothing to learn. I read a few things at will, and I used the CI framework to write a lot of websites for different purposes. There are also APIs. The backend service is especially concerned. Unfortunately, there is nothing to look at. just an imgUpload and a geoip, using python, lua and other things, it can be seen that code heterogeneity is always hard to avoid.
Reading Readme. md at the front end seems to be useful for Angular, just recently, so fork is the first to see how they write Angular at the front end.
In addition, last month, just a little longer ago, I saw a lot of negative things in my circle of friends ......
In July 29, a media company in Nanjing published the story of the trillion miracle cloud: Exaggeration and deception are only separated by a piece of paper, directly pointing out that the story of fake farming has quickly turned around in the circle of friends.
Similar to this, baidu searched a lot.
In general, I think it is immoral for programmers to do such things. The people who leak this code will never suggest hiring and have no basic professional ethics. No matter whether the company is good or not, the company is unfair to you. as an employee, we should still share this score.
Code leaks are too big, and the problem is not big. For the business, it is impossible to review the business of the company and realize the value of the company. Therefore, the code is useless in essence. Do you think you can beat Baidu by giving you all the source code? It is useless.
However, the code is related to the company's security. hackers with ulterior motives refer to the code for discovering vulnerabilities and attacking the company, posing a threat to the company's customers, stealing trade secrets, and even blackmailing, it's really bad to fall into the company's extreme passive situation.
However, there is nothing to guard against ~ Dear Little Brother, can someone pass this project? I want to learn about PHP in this way. thank you!