You should be fine from SQL injection if you cakes conventions. That part is built in. But you need to implement the security component and the sanitize class. You can find information on implementing those in the docs. I font think there are any security issues with the acl. Not sure on the authontication, I doubt though.
On Nov 27, 10:40 am, Tim <[EMAIL PROTECTED]> wrote: > I was thinking that Cake was at least automatically sanitizing the > post variables and the like. I can't believe that there isn't more > info on security on the cake website. > > How secure are the login and ACL components? Can I rely on them to be > solid? > > Thanks Adam! --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---
