Jump to content

[SOLVED] strip_slashes() and html form security

zGrassman

By zGrassman
in PHP Coding Help

 Share

Recommended Posts

zGrassman Newbie

zGrassman

Posted
Posted

is strip_slashes() good enough to use to stop sql or php or html manipulation entered in to a html form post box?

 

I understand there is still JS issues that i haven't looked into yet and url manipulation with mysql. Any short advise on those topics are appreciated but for now im just worried about html forms. Is killing slashes suffice? I know with a comma you can allow certain tags for certain situations.

 

the form is username and password login and register for now, i havent used it anywhere else yet just so you have an idea what im working with.

 

zGrassman Newbie

zGrassman

Posted
  • Author
Posted

that is what i ment...strip_tags...oops? that is what i ment from the beginning

 

so ill ask my question again only this time correctly

 

is strip_tags() good enough to use to stop sql or php or html manipulation entered in to a html form post box?

 

My bad.... LOL

 

zGrassman Newbie

zGrassman

Posted
  • Author
Posted

htmlentities() mebbe?

 

You know what? that is pretty cool...i checked on php.net what it was about and i like this one better. At least with this one if i was to log a page I could tell if someone was trying to put crazyness into my forms. while the other one would just strip it.

 

Im sure i could assign a seperate var before i strip the tags and then store it in  a text file or maybe break it somehow...so it wouldnt be dangerous. but would just using strip_tags() be suffice or would i still be open to attacks. i dont want a whole lot of string functions when there is no need..i understand its all based on what you want your form to do or process i just wanted a general idea. thanks for the info on that function tho i really like it

This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.