This is an interesting conversation, so I'm glad it got brought up,but I
find myself curious: Are you actually trying to avoid PDO, or just trying
to learn how the security actually works?
Well, It's a learning process. my point is this... If I can make it
safe and sound without the PDO,
I understand some ways are better than others in this one, and it
looks like the PDO based implementations shine the most as far as SQL
Injection.
But would not the following be good enough - without implementing a
PDO solution?
1- get the user input
2- for each input, deliberately enforce a
Hi Everyone,
I have a application that I am writing for managing addresses on-
line, I will have a fancy login system using sessions to help store
the info, and to provide security for logging in.
What I am wondering now, is if someone is willing to try and do some
sql injection's on my
3 matches
Mail list logo
