Go Back   Webmaster Malaysia Forum » Website Design & Development » Website Programming
Reload this Page sql injection

Closed Thread
 
LinkBack Thread Tools Search this Thread Rate Thread Display Modes
  #1 (permalink)  
Old 05-10-2004, 10:21 AM
MHR's Avatar
MHR MHR is offline
Senior Webmaster
  
Join Date: Sep 2001
Location: epox
Posts: 435
Rep Power: 95
MHR is on a distinguished road
Send a message via ICQ to MHR Send a message via Yahoo to MHR
sql injection
aku ni tak pakar sangat pasal security. so camner nak men-secure kan lagi script so orang tak inject xss or sql stuff?
__________________
Munzir + "/^[Hh](a)(z)\1\2[iI]$/"
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
  #2 (permalink)  
Old 05-10-2004, 10:40 AM
Novice Webmaster
  
Join Date: Oct 2004
Location: --== Malaysia ==--
Posts: 87
Rep Power: 51
lowyat99 is on a distinguished road
banyak cgi/perl script sesuai bagi hang . cari sendiri kat google
__________________
<body link="#0000CC" vlink="#0000CC" alink="#0000CC">
<img src="http://www.outsource.net.my/graphics/sywavelogo.jpg" width="373" height="52">
<strong><a href="http://www.outsource.net.my">Outsource.net.my</a></strong> - <em><font size="2">the search for competitiveness</font></em>
<font size="2">( Project Managers : You can outsource your job to freelancers and get it done with the price you want to pay. )
( Freelancers : You can do what you love to do and get paid. ) </font>
</body>
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
  #3 (permalink)  
Old 05-10-2004, 11:01 AM
Novice Webmaster
  
Join Date: Sep 2004
Location: Shah Alam
Posts: 68
Rep Power: 52
infeeneetee is on a distinguished road
ler... kena cari sendiri la abg mhr... tak best tul ayat tue ekeke
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
  #4 (permalink)  
Old 05-10-2004, 11:11 AM
MHR's Avatar
MHR MHR is offline
Senior Webmaster
  
Join Date: Sep 2001
Location: epox
Posts: 435
Rep Power: 95
MHR is on a distinguished road
Send a message via ICQ to MHR Send a message via Yahoo to MHR
ye la ye la... case closed.
__________________
Munzir + "/^[Hh](a)(z)\1\2[iI]$/"
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
  #5 (permalink)  
Old 05-10-2004, 11:11 AM
MHR's Avatar
MHR MHR is offline
Senior Webmaster
  
Join Date: Sep 2001
Location: epox
Posts: 435
Rep Power: 95
MHR is on a distinguished road
Send a message via ICQ to MHR Send a message via Yahoo to MHR
and wtf. perl/cgi? tak paham kehendak soalan.
__________________
Munzir + "/^[Hh](a)(z)\1\2[iI]$/"
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
  #6 (permalink)  
Old 06-10-2004, 12:26 PM
bazet's Avatar
Novice Webmaster
  
Join Date: Aug 2001
Location: Ampang KL
Posts: 93
Rep Power: 89
bazet is on a distinguished road
Send a message via ICQ to bazet Send a message via AIM to bazet Send a message via Yahoo to bazet
sampai skrg aku tak tau cemana SQL injection berfungsi ?

kalau aku buat web...aku set cache 1 hari..and SQL cuma execute sekali aja......
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
  #7 (permalink)  
Old 08-10-2004, 02:28 PM
Novice Webmaster
  
Join Date: Nov 2003
Location: malaysia
Posts: 25
Rep Power: 0
alien3d is on a distinguished road
Send a message via MSN to alien3d Send a message via Yahoo to alien3d
Sql injection
cam ni daa
misal page
page.php?sql=<? $sql="update table user administrator='my name' and password"; ?>
kira jika source code ada $sql dia akan automatic guna variable $sql dan itu adalah sql injection.
Untuk mengelakan sql injection kena declare data type macam c tapi php tak support jadi kena declare sendiri
misalnya
$sql=sprintf(%d,$_GET['id]);
Kira id tu nombor guna %d
kalau string
sprintf($s,$_GET['message'];
kalau nak sempoi lagi guna magic quote
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
  #8 (permalink)  
Old 08-10-2004, 03:03 PM
bazet's Avatar
Novice Webmaster
  
Join Date: Aug 2001
Location: Ampang KL
Posts: 93
Rep Power: 89
bazet is on a distinguished road
Send a message via ICQ to bazet Send a message via AIM to bazet Send a message via Yahoo to bazet
http://www.governmentsecurity.org/ar...icTutorial.php
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Closed Thread

« Previous Thread | Next Thread »


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes Rate This Thread
Linear Mode Linear Mode
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
Anti SQL Injection Code / Intro YajivMalhotra Website Programming 8 11-10-2004 04:01 PM
About XSS Injection YajivMalhotra Website Programming 3 11-10-2004 03:53 PM



All times are GMT +8. The time now is 10:57 AM. Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
LinkBacks Enabled by vBSEO 3.1.0 vBulletin skin by ForumMonkeys.com.


WebmasterMalaysia.com is Proudly Hosted by Exabytes Semi Dedicated Server.
Contact Us - Webmaster Malaysia Forum - Archive - Top

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59