SQL injection

2.12.08
A way to crack a security/network system indeed gets patched before the masses know about such a flaw!!!The SQL injection is no exception. Also most people were aware of this right from the beginning, but the problem was when naive designers come into coding webdites. New coders who were not completely aware of security and the cracking techniques thought that filtering inputs was just as a way of creating neet user interface or to assist the user in giving correct format inputs. This mentality can lead to neglecting such a filtering system as such, which can lead to serious security flaws.
SQL injection can be some what avoided by filtering the inputs before crating the sql queries. i dont wish to explainin the injection in much detail when we have a fine piece of work on SQL injection by STEVE FRIEDL at

http://www.unixwiz.net/techtips/sql-injection.html

those who are interested can read the article, its not hightly technical content good for naive coders.

Related Posts by Categories



Widget by Hoctro | Jack Book

0 Responses: