Preventing SQL Injection Attacks
Posted by TimSlavin at June 16, 2004
"In a previous article we provided some examples of how intruders will try to attack your site using Cross-site Scripting (XSS) attacks. In an XSS attack, the attacker tries to use client-side methods of injecting client-side script and then high-jacking a user's session. Now, we're going to provide some examples of a server-side attack where an intruder will try to obtain information from within your database. After the examples, we will go through methods of securing your code against these types of attacks."
Good article about an esoteric (but common) kind of online attack and how to prevent it. From WWW Coder. In the past two years, at least one big ecommerce website was trashed this way (my earlier story here).
Trackback Pings
TrackBack URL for this entry:
http://www.reachcustomersonline.com/cgi-bin/mt/mt-tb.cgi/1315
Comments
Post a comment
Popular Articles
- How to Pick an Online ECommerce Shopping Cart: 6 Carts Reviewed
- How to Code HTML Email Newsletters
- How To Create An Editorial Process To Publish Web Content
- How To Do Basic Search Engine Optimization for Web Pages
- How To Easily Edit DNS Zone Files To Configure Email Servers
Helpful Podcasts
BoagworldAbout This Website
This site is an online magazine that offers free how-to internet knowledge for budget-minded businesses and the designers, programmers, and others who support them. Learn More...
Masthead
Writer, Editor, Publisher: Tim Slavin
Tel: (602)325-3024 (US)
AIM: redhorsecomm
Est. November 2002
