Matt Arnilo S. Baluyos (Mailing Lists) wrote:
On 3/29/06, Ray Hauge <ray.hauge@xxxxxxxxxxxxxxxxxxxxxxx> wrote:
Chris Shiflett has written a number of good articles on the matter. You can
find them at:
http://shiflett.org/articles
The articles in particular would be:
Security Corner: Cross-Site Request Forgeries
Security Corner: Data Filtering
Security Corner: SQL Injection
Hello Ray,
Thanks for the links, they are very informative and gives a clear
background on this particular aspect of web security. I was looking
for an existing script that I can just plug in to my project though.
After some googling around, I've come across kses
(http://sourceforge.net/projects/kses). From the website, it says that
it's being used in Wordpress and Geeklog. There's also a PHP5 version
included in the release so for OOP purists, that ought to be great
news.
Could check out http://pecl.php.net/package/filter if you have enough
access to the server.
--
Postgresql & php tutorials
http://www.designmagick.com/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
