localhost Posted September 18, 2006 Share Posted September 18, 2006 I want to know how to secure my scripts from as much as I possibly can...for $_GET$_POSTso far for POST I use htmlentities and mysql real escape string...and for $_GET i have nothing.thanks-dan Link to comment https://forums.phpfreaks.com/topic/21139-securing-php-script/ Share on other sites More sharing options...
ToonMariner Posted September 18, 2006 Share Posted September 18, 2006 too big a question to answer!!!suffice to say that in any situation where you use the users input in a query or file/dir creation deletion make sure that what ever they have entered contains what you expect and NOTHING else.real_escape, preg_match, substr, preg_replace, strpos et. al. will be the tools of your trade from now on!!! ;) Link to comment https://forums.phpfreaks.com/topic/21139-securing-php-script/#findComment-93880 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.