On Fri, Jul 10, 2009 at 3:50 PM, Daniel Brown<danbrown@xxxxxxx> wrote: > On Fri, Jul 10, 2009 at 15:48, Chris Payne<chris_payne@xxxxxxxxxxxxxxx> wrote: >> Hi everyone, >> >> My server appears to be the victim of a chinese hack-attack and I >> believe they managed to change pages via SQL Injection, do any of you >> have any ideas how to lock down my forms so MySQL cannot be used from >> my forms? > > First and foremost: > > http://php.net/mysql_real_escape_string > > -- > </Daniel P. Brown> > daniel.brown@xxxxxxxxxxxx || danbrown@xxxxxxx > http://www.parasane.net/ || http://www.pilotpig.net/ > Check out our great hosting and dedicated server deals at > http://twitter.com/pilotpig > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > > You, sir, are an email list ninja. Not ten seconds before I hit Send, Gmail tells me you ninja'd my response! -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
