Jump to content

Archived

This topic is now archived and is closed to further replies.

anthonydamasco

secure form help!

Recommended Posts

Hello,

I learned alot about PHP and MySQL in the last 2 months. I have forms and logins, sessions, all that good stuff, but now I have to make something I've been dreading.

I have to make an Online Credit Application. SSN, checking account numbers the worx, I basicly need help finding sources to learning how to make a very secure form to keep my clients information safe.

thanks!

Share this post


Link to post
Share on other sites
Use SSL (Secure Socket Layer) to encrypt all incoming/outgoing traffic from the web server. Then use a simple input protection scheme to prevent injection attacks. On my form, I don't need any special symbols, so I wrote a function that takes a string (user input) as a parameter, passes it through a preg_replace("\W", '', $string) and returns it. This will remove alsl charecters that is not alpanumeric or an underscore. If you need any other special symbols, you should deny all and explicitly allow the ones you need.

Also, check out the crypt function for storing data.

regards,
...drkstr

Share this post


Link to post
Share on other sites

×

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.