Make a Lasting Impression





Great article on SQL injection
Home away from home
Joined:
2007/12/4 9:00
Posts: 1199
Found a really great article on SQL injection prevention. This clarified a lot of things for me:

* The Hitchhiker's Guide to SQL Injection Prevention.

The same guy also has an excellent tutorial on PDO, including security aspects, which covers some things not clearly explained in the PHP manual.

Posted on: 2016/9/15 4:19
Transfer the post to other applications Transfer


Re: Great article on SQL injection
Home away from home
Joined:
2007/12/4 9:00
Posts: 4236
Thanks for the bookmarks, Simon! I actually have both open in separate tabs.

The general PDO tutorial has some other interesting observations about coding practices - especially in error handling, which could bring a new perspective to our own error handler.

I hope things are going well for you on the other side of the world!

Posted on: 2016/9/23 1:46
_________________
Steve
Twitter: @skenow
Facebook: Steve Kenow
Transfer the post to other applications Transfer


Re: Great article on SQL injection
Home away from home
Joined:
2007/12/4 9:00
Posts: 1199
You're welcome! The thing I really like was when he explained that all SQL injections attacks are simply the result of one problem - poorly formatted queries. That was a real 'aha' moment for me.

I've been spending a fair bit of time with PDO recently, it really makes life a lot simpler.

Posted on: 2016/11/25 4:47
Transfer the post to other applications Transfer


Re: Great article on SQL injection
Home away from home
Joined:
2009/3/3 4:18
From Belgium
Posts: 1943
@Madfish : it would be great if you could have apply that knowledge in the 2.0 branch We know the implementation of PDO in the core right now can be improved a lot.

If you need a hand, skenow or I can help you get started

Posted on: 2016/11/25 6:47
_________________
d-log - My personal site
Openhub profile
Transfer the post to other applications Transfer






You can view topic.
You cannot start a new topic.
You cannot reply to posts.
You cannot edit your posts.
You cannot delete your posts.
You cannot add new polls.
You cannot vote in polls.
You cannot attach files to posts.
You cannot post without approval.

[Advanced Search]