-
Deathbringer
preventing form input hacks - tutorials?
Hey all,
redesigning my site and gonna make it bit more secure. anyone know of any tutorials on good practices/convention to prevent hackers from inserting code into input fields in forms which would get parsed on the server?
i've already set a max char limit, converted to lowercase (more for DB consistency than security) and adding slashes.
am i missing anything? urlencoding?
i've looked around the net and the forum for some tutes but not much available. if anyone knows any sites/book extracts that could be of any use, that'd be cool.
thanks Alex.
-
say no more
What language are you using? ASP,PHP etc..?
You will certainly need to get rid of apostrophes - here's how to do it ASP:
http://www.4guysfromrolla.com/webtech/051899-1.shtml
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|