post-page

PHP Filters : mmmm….security!

3
responses
by
 
on
June 30th, 2005
in
LinkyLoo

PHP Filters : mmmm….security! Definitely worth a look-see for PHP programmers. OWASP comes highly recommended.

heading
heading
3
Responses

 

Comments

  1. sanitize_sql_string is somewhat over-paranoid. unless I am mistaking, it basically removes any occurrence of ; in sql strings. not exactly what you want in a publishing tool.

  2. Mark says:

    Maybe for a blogging tool, but for any app of finance, it is just being safe.

  3. even for a finance app, really. i’ve worked with firms in the finance sector in the past. in practice, they’re hardly less insecure as another firm. and you basically cannot use a security measure such as this: it will likely break a market data, order routing and clearing application who relies on it.



Obviously Powered by WordPress. © 2003-2013

css.php