Jump to content

Archived

This topic is now archived and is closed to further replies.

localhost

Securing php script....

Recommended Posts

I want to know how to secure my scripts from as much as I possibly can...

for $_GET
$_POST

so far for POST I use htmlentities and mysql real escape string...and for $_GET i have nothing.

thanks

-dan

Share this post


Link to post
Share on other sites
too big a question to answer!!!

suffice to say that in any situation where you use the users input in a query or file/dir creation deletion make sure that what ever they have entered contains what you expect and NOTHING else.

real_escape, preg_match, substr, preg_replace, strpos et. al. will be the tools of your trade from now on!!! ;)

Share this post


Link to post
Share on other sites

×

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.