14 Security Tips For Developing With PHP and MySQL

Posted on January 1, 1970

Do not use user input directly in your SQL queries. Use mysql_real_escape_string() to escape the user input. PHP.net recommends this function: (well a little different). PLAIN TEXT. PHP:. function escape($values) { …

Here is the original:
14 Security Tips For Developing With PHP and MySQL

» Filed Under security

Comments

• 
  

• Tags

  a ability about-me appsec beginning-php4 bibliography business code compose-inc-php database design documentation escaping-output findmsg-inc-php flash folder-inc-php google html imap-class-php input filtering internet library Links load-balancing media mysql-class-php news pear php php5 programming readmsg-inc-php security seo skip-to-sidebar smtp-class-php sql-injection technology tools user validation web application security webappsec where-hacking wordpress

• Archives

  • June 2008
  • May 2008
  • April 2008
  • March 2008
  • February 2008
  • January 2008
  • December 1969

• Meta

  • Log in
  • Entries RSS
  • Comments RSS
  • WordPress.org