Page 1 of 1
Can anyone help me about SQl injection attacks
Posted: Tue Jun 27, 2006 4:56 am
by Mids
i'm trying to write a script , but i heard about something called Sql injection which enable hacker or somebody to get information for my database such as usernames and passwords , so i want to protect myself against those people . thanks in advance ,
Posted: Tue Jun 27, 2006 5:16 am
by Maugrim_The_Reaper
http://shiflett.org/articles/security-corner-apr2004
As an aside to the article, the recommended escaping function (you'll know what I mean after reading the above) is
mysql_real_escape_string(),
mysqli_real_escape_string() or
pg_escape_string() depending on the database and library extension being used. Other databases and extensions may supply variants of these.
Posted: Tue Jun 27, 2006 8:23 am
by feyd
Mids, you've got three threads with a total of three posts, all entirely bolded. Please do not continue to bold your entire posts.
Posted: Fri Jun 30, 2006 2:53 pm
by Bigun
*bookmarked*