Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.
We will soon be implementing an internal auditing mechanism which uses email alerts for certain events. I've settled on the following code and would appreciate any feedback from the group on any obvious MySQL errors or flaws that my eyes may have missed. I am particularly keen on knowing if the last MySQL update statement would in fact be alright for a system that may have thousands of entries in the tables.
kaisellgren wrote:Who has the power to manipulate 'access1_alert_email_address' field?
That value is set by a web page interface and running apache2 as www-data pid and the field can only be set and changed by www-data.
I hope that answers the question. Of course, on the server which only has two users, root and www-data, it can be manipulated and changed via phpmyadmin.
I'm interested in knowing who (a person) could possibly alter it - e.g. through an interface? If only the site owner(s) can do it, then I see no problems.