Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.
When I validate a form field input for something like a "first name", that is to be put in a "first_name" MySQL database column of VARCHAR(15) type... I usually validate the form field by doing something like this:
65535 because that is the character max of the TEXT MySQL column-type. Is this advisable to do as far as length checking? Or is this overkill for something like a textarea? Thanks for any advice you can give! Take care.
Set Search Time - A google chrome extension. When you search only results from the past year (or set time period) are displayed. Helps tremendously when using new technologies to avoid outdated results.
If I may ask: what is the reason to use is_string in this case? Is it an extra measure? Is the POST data (or GET if one uses that) not always a string?
(just curious, as I haven't used that function before)
Yes, of course. But maybe I should refrase my question then: what happens if you leave that out? Isn't a POST variable (if you use the function for that) not always a string? What happens if you leave the is_string out and feed the function an array? Aargh, too many question I'll have to do some research myself I guess