Protection against suspicious data, PHP Web Programming

Input values embedded in SQL statements should be screened for inappropriate characters that can form the basis so-called SQL Injection attacks, a type of security attack that may undermine the SQL statements your PHP code executes.  The built-in PHP function mysql_real_escape_string can help to replace such inappropriate strings with safe input.  Refer to the IT 202 manual index for the use of this function.  Note also the reference in the manual to the Mitre security threat analysis.  The mysql_real_escape_string function transforms the input data it is applied to and the new data is then used for the database interaction.  If the original data was not suspicious, there will be no affect; the changes only affect inappropriate input characters.  Honor's students must use prepared statements.

Posted Date: 3/29/2013 6:14:16 AM | Location : United States

Related Discussions:- Protection against suspicious data, Assignment Help, Ask Question on Protection against suspicious data, Get Answer, Expert's Help, Protection against suspicious data Discussions

Write discussion on Protection against suspicious data
Your posts are moderated
Related Questions
Turn Based Business Game I am engrossed in having a turn based strategy game created for small business owners - specifically at least initially in the lawn as well as landscape

specify a form field where the user can enter large amounts of text. In most respects, works as an field. It can contain a name and

Evaluate the following expression:  I.            7+5  II.            "7" + "5"  III.            c.       7 * 5 d.      7/5  IV.            e.       7 % 5 2. Develop

We need help to create web for Marketing Hi, we are a web agency working on the entire range of marketing requirements - be it websites, mobile applications, Facebook applicatio

The prompt box lets the user to enter information. The advantage of using a prompt are fairly restricted and the use of forms would frequently be preferred (from a user perspective

Events are actions which can be detected through JavaScript.  An example would be the on Mouse Over event that is detected while the user moves the mouse on an object.  Another eve

Website creation - similar to crowd funding Looking to receive quotes as well as approximate time frame for the development of a website similar to Ope

Create Static HTML Pages We are a travel search engine provider placed in Germany. We are probing for a developer who can create a bunch of static HTML pages for connections amo

Graphical browsers: In order to enjoy the multimedia aspect of the Web, you have to use a graphical browser like Netscape Navigator or NCSA Mosaic. Graphical browsers can illu

Cakephp plugin needed to plot charts with nv3d.js I have a database where I have pairs of date times and values. I want a cakephp plugin that permits me to plot them using nv3d.