Scud Posted April 16, 2008 Share Posted April 16, 2008 <?php $con = mysql_connect("localhost","user","password"); if (!$con) { die('Could not connect: ' . mysql_error()); }mysql_select_db("mydata", $con);$sql="INSERT INTO my table(var1, var2, var3, var4, var5, var6) VALUES ('".mysql_escape_string($_POST[var1])."','".mysql_escape_string($_POST[var2])."','".mysql_escape_string($_POST[var3])."','".mysql_escape_string($_POST[var4])."','".mysql_escape_string($_POST[var5])."','".mysql_escape_string($_POST[var6])."')";if (!mysql_query($sql,$con)) { die('Error: ' . mysql_error()); } echo "Record has been added";mysql_close($con) ?> My php file is looking very similar to that, however because i'm not the best with php im wondering if a script like that is secure enough to handle client information? please respond! Link to comment https://forums.phpfreaks.com/topic/101445-can-script-handle-client-information/ Share on other sites More sharing options...
Northern Flame Posted April 16, 2008 Share Posted April 16, 2008 it depends on what kind of information, if its just normal stuff maybe like an email address or something like that, yes, if its a credit card number or something more private like that, then you should get and SSL certificate to be more secure. Link to comment https://forums.phpfreaks.com/topic/101445-can-script-handle-client-information/#findComment-518929 Share on other sites More sharing options...
Scud Posted April 17, 2008 Author Share Posted April 17, 2008 just contact details, and the rest! first names, last names, numbers, addresses such as that! Link to comment https://forums.phpfreaks.com/topic/101445-can-script-handle-client-information/#findComment-519368 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.