Hire Me! I'm currently looking for my next role in developer relations and advocacy. If you've got
an open role and think I'd be a fit, please reach out. You can also find me
on LinkedIn.
Recently a coworker noticed a web site where the owners had forgotten to secure their administration folder. (He was able to get to the folder by guessing.) He immidiately emailed them to let them know about the problem.
The site promptly closed up the directory.... but only if you requested http://theirurl/thefolder. If you went to http://theirurl/thefolder/default.aspx, you could still get right in.
Something you may want to check on your own sites!