On Thu, 2016-03-24 at 09:40 -0700, Gordon Messmer wrote: > Just to be clear: you absolutely should upgrade to a currently > maintained version of MySQL. Agreed. Its going to be rainy in England this Easter weekend, so am contemplating upgrading the last production C5 to C6. > However, upgrading will not protect you from SQL injection attacks. > The probes you're seeing aren't targeting the SQL server. They're > targeting your php code. Have already upgraded my PHP routine which blocks IP addresses when GET data exceeds its acceptable field size. -- Regards, Paul. England, EU. England's place is in the European Union. _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx https://lists.centos.org/mailman/listinfo/centos
Re: C5 MySQL injection attack ("Union Select")
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: C5 MySQL injection attack ("Union Select")
- From: Always Learning <centos@xxxxxxxxxxx>
- Date: Thu, 24 Mar 2016 17:18:01 +0000
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <CACUuVS51BUL6K6fFb+knpe9TrNLvbYnHZveHUk1uUFwv9ANwig@mail.gmail.com>
- References:
- C5 MySQL injection attack ("Union Select")
- From: Always Learning
- Re: C5 MySQL injection attack ("Union Select")
- From: Leon Fauster
- Re: C5 MySQL injection attack ("Union Select")
- From: Johnny Hughes
- Re: C5 MySQL injection attack ("Union Select")
- From: Always Learning
- Re: C5 MySQL injection attack ("Union Select")
- From: Gordon Messmer
- C5 MySQL injection attack ("Union Select")
- Prev by Date: Re: C5 MySQL injection attack ("Union Select")
- Next by Date: Re: C5 MySQL injection attack ("Union Select")
- Previous by thread: Re: C5 MySQL injection attack ("Union Select")
- Next by thread: Re: C5 MySQL injection attack ("Union Select")
- Index(es):
 |