| Subject | PHP & Firebird SQL Injection Protection |
|---|---|
| Author | myles@techsol.org |
| Post date | 2006-05-17T04:39:04Z |
I have read a lot of documentation about protecting one's PHP applications
from SQL Injection hacking, but all examples I read are based on MySQL. I
use Stored Procedures in Firebird for EVERYTHING and consequently it looks
like this alone is a great way to protect my database from hacking attempts.
However I would like to know if others have adopted any particular tricks to
protect their PHP apps from SQL Injection hack attacks with Firebird. If
anyone has any functions that they have develops that 'sanitizes' any fields
before using them for INSERTs, etc. I'd love to take a look at what you may
have done.
Thanks in advance for any examples.
Myles
============================
Myles Wakeham
Director of Engineering
Tech Solutions US, Inc.
Scottsdale, Arizona USA
Phone (480) 451-7440
www.techsol.org
from SQL Injection hacking, but all examples I read are based on MySQL. I
use Stored Procedures in Firebird for EVERYTHING and consequently it looks
like this alone is a great way to protect my database from hacking attempts.
However I would like to know if others have adopted any particular tricks to
protect their PHP apps from SQL Injection hack attacks with Firebird. If
anyone has any functions that they have develops that 'sanitizes' any fields
before using them for INSERTs, etc. I'd love to take a look at what you may
have done.
Thanks in advance for any examples.
Myles
============================
Myles Wakeham
Director of Engineering
Tech Solutions US, Inc.
Scottsdale, Arizona USA
Phone (480) 451-7440
www.techsol.org