Announcement

Collapse
No announcement yet.

Coding Hackproof? Any tutorials/manuals?

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • okrogius
    replied
    Vildate everything you get from a user. For all you care they could be trying page.php?page=/etc/passwd

    Also ALWAYS keep register globals off.

    Leave a comment:


  • GSHelpBoy
    replied
    You can't prevent that.

    All you can do is make sure you don't make it so what is typed into the browser location can affect your site.

    Leave a comment:


  • Helza
    started a topic Coding Hackproof? Any tutorials/manuals?

    Coding Hackproof? Any tutorials/manuals?

    Hi,

    I've learned php/mysql coding on my own with the use of books and online resources. However something that i've never encountered took into account is "hacking" ..


    Are there any tutorials/manuals/guidelines around which tell me what to do and what not?

    I read many storys about hacking and i'm get worried as to how i can protect my webserver/databases from this.

    for example how do i prevent users from entering there own data into variables..

    if i have an url with something like <a href="myscript.php?name=blaat">blaat</a>

    how do i pretent people from just typing myscript.php?name=somethingelse into there browsers?
    and is it possible to "hide" these variables from users?

    etc etc
    Last edited by Helza; Mon 1 Jul '02, 2:09am.
widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
Working...
X