[prev in list] [next in list] [prev in thread] [next in thread] 

List:       security-basics
Subject:    Re: How can I secure my site?
From:       Jeff MacDonald <jam () zoidtechnologies ! com>
Date:       2010-05-03 20:11:53
Message-ID: 20100503201153.GA20011 () cyclops ! zoidtechnologies ! com
[Download RAW message or body]

greetings,

On Sat, May 01, 2010 at 08:16:50AM -0400, Raymond wrote:
> You should not use addslashes(). That does little to protect you.
> You should at the very least use mysql_real_escape_string().
> 

or use "bound parameters". you will still need to escape the data when you
display it in the browser, though.

regards,
J
-- 
zoid technologies
custom information systems

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL \
certificate.  We look at how SSL works, how it benefits your company and how your \
customers can tell if a site is secure. You will find out how to test, purchase, \
install and use a thawte Digital Certificate on your Apache web server. Throughout, \
best practices for set-up are highlighted to help you ensure efficient ongoing \
management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------


[prev in list] [next in list] [prev in thread] [next in thread]