recommendations/links for learning hwo to write POST/GET scrtips to thwart sql injection

Collapse
This topic is closed.
X
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • NotGiven
    #1

    recommendations/links for learning hwo to write POST/GET scrtips to thwart sql injection

    Steve wrote,[color=blue]
    > "And read up on "sql injection" attacks (use your favorite search
    > engine). As indicated, validate input. e.g. if you expert $_GET['a']
    > to be integer, then do
    >
    > $a = intval($_GET['a']);"[/color]

    I want to learn how to incorporate defenses into my code to thward a sql
    injection attach. Please recommend links that discuss actual code defenses,
    not just what the attach is.

    Thanks.


    Tags: None
    • Chung Leong
      #2
      Re: recommendations/links for learning hwo to write POST/GET scrtips to thwart sql injection


      "NotGiven" <noname@nonegiv en.net> wrote in message
      news:dU0Uc.604$ yB.266@bignews1 .bellsouth.net. ..[color=blue]
      > Steve wrote,[color=green]
      > > "And read up on "sql injection" attacks (use your favorite search
      > > engine). As indicated, validate input. e.g. if you expert $_GET['a']
      > > to be integer, then do
      > >
      > > $a = intval($_GET['a']);"[/color]
      >
      > I want to learn how to incorporate defenses into my code to thward a sql
      > injection attach. Please recommend links that discuss actual code[/color]
      defenses,[color=blue]
      > not just what the attach is.
      >
      > Thanks.
      >
      >[/color]

      Just search comp.lang.php for "SQL injection" and you will find plenty of
      answers and advice. Preventing SQL injection is not hard. It's just a matter
      of diligence.


        Comment

        Previous template Next
        Working...