Sample Chapter: php|architect\'s Guide to PHP Security

文章發佈於 : 2005-11-30 09:13:27 | 文章分類 : 程式相關
標籤 :

php|architect's Guide to PHP Security, a book by PHP developer Ilia Alshanetsky (Marco Tabini & Associates, September 2005, ISBN 0973862106), discusses the important topic of how to make PHP applications secure. Chapter 3, for which the MySQL Developer Zone received permission to reprint, covers "SQL Injection".


Chapter 3, SQL Injection
SQL injection is yet another common vulnerability that is the result of lax input validation. Unlike cross-site scripting vulnerabilities that are ultimately directed at your site’s visitors, SQL injection is an attack on the site itself—in particular its database.

The goal of SQL injection is to insert arbitrary data, most often a database query, into a string that’s eventually executed by the database. The insidious query may attempt any number of actions, from retrieving alternate data, to modifying or removing information from the database.

Read On
To download the entire chapter in PDF format, click here (no registration required!)

 Love is waiting so you don't have to. Join Date.com for free!
 Join Asia FriendFinder the Largest Asian Dating Site on the Web for FREE!
 Kaspersky Security for Internet Gateway 7.0
 Know when to sell on eBay using research

閱讀全文 | 回 應(0) |

 Step-By-Step Guide to Converting Web Projects from Visual Studio .NET 2002/2003 to Visual Studio 2005

文章發佈於 : 2005-11-21 10:21:57 | 文章分類 : 程式相關
標籤 :

微軟推出Visual Studio 2005和.NET Framework 2.0之後
我想應該開始會有一些專案轉換到這個平台上面
阿維公司或許有一天也會進行這樣的工作
因此就把今天找到的文章先記下來
以後需要用到的時候就不怕找不到了
:source: Step-By-Step Guide to Converting Web Projects from Visual Studio .NET 2002/2003 to Visual Studio 2005
 Love is waiting so you don't have to. Join Date.com for free!
 Join Asia FriendFinder the Largest Asian Dating Site on the Web for FREE!
 Kaspersky Security for Internet Gateway 7.0
 Know when to sell on eBay using research

閱讀全文 | 回 應(0) |

 [轉貼] MSN机器人源代码(C#)

文章發佈於 : 2005-08-27 12:44:09 | 文章分類 : 程式相關
標籤 :

论坛上,有一热心网友公开了自己设计的MSN机器人源代码,以下是原文:
最近在新公司忙一数据库中的数据改变监控系统,定时根据复杂的业务规则去检索是否有改变的数据,
如果有,则通过各种渠道(MSN、EMail、SMS等发送通知消息)。

其中MSN信息发送部分,我在工余时间花了几个小时扩展了一下,做了一个MSN机器人,源代码是C#,
含自动IP地址查询、简单自动问答等。

做这个没有什么目的,只是看看到底别人是怎样实现的,自己做了2个小时就实现了,没有什么难度,
顺便打破别人敝帚自珍的做法,不就是一点点代码吗?还故做神秘的:)因为有现成的DotMSN组件,
自己搜索该组件出处。

安装和使用:解压,把mymsn.mdf文件附加到MS SQL Server中,打开mymsn.sln,
修改dbconnection字符串中的数据库地址、用户名和密码,然后运行便可。

你可以尝试申请多一个账户,专门用来登录做机器人,自己的则用来测算该机器人。
机器人登录后,可以点击“show online contact”按钮,会显示在线人员,双击之,便可。

尝试输入“:)” “:(”“你是父亲是谁?”之类的话,就可以看见自动回复。
欢迎下载、反馈问题、建议.”

点击此处下载MSN机器人源代码
 Love is waiting so you don't have to. Join Date.com for free!
 Join Asia FriendFinder the Largest Asian Dating Site on the Web for FREE!
 Kaspersky Security for Internet Gateway 7.0
 Know when to sell on eBay using research

閱讀全文 | 回 應(4) |

 PHP + JavaScript Double Combo Boxes

文章發佈於 : 2005-08-17 09:18:14 | 文章分類 : 程式相關
標籤 :

Combo Boxes
 Love is waiting so you don't have to. Join Date.com for free!
 Join Asia FriendFinder the Largest Asian Dating Site on the Web for FREE!
 Kaspersky Security for Internet Gateway 7.0
 Know when to sell on eBay using research

閱讀全文 | 回 應(0) |

 BlogShares Links Exchange

1. Step into the Nexus 2. Scary Personals 3. Scared Bunny
4. This Is A Cult 5. Its all about me 6. Webby's World
7. Flower Delivery 8. Mindblogging Stuff 9. Random Thoughts by R. U. Serious
10. Palmistry and Hand Analysis 11. Forward-and-Share 12. The Site With the Lamp
13. Free Sample Forager 14. Kosir 15. CRM Reports

 阿維推薦

1. ㄚ凱隨手記 2. ↖「懿」*瘋*堂↗ 3. A.D. Notepad 西元記事本
4. Liang's Blog 5. 硬是要學! 6. 北國風情
7. 綠色工廠 8. 淡淡的天空藍 9. 班大貓廢紙塗鴉部落格
10. 大豆剝落殼 11. SEO网站优化推广 12. lazy Guy
13. PHP 黑店 14. Meson手扎

 Back Links