1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

PHP and mySQL security

Discussion in 'HTML, Graphics & Programming' started by rudeboymcc, 1 Mar 2006.

  1. rudeboymcc

    Wise Guy

    Joined: 21 May 2003

    Posts: 1,008

    Hi. i'm trying to build a website which when running will have a lot of personal data (user's e-mails) and other stuff which i do not want people to access easily.

    I made the database using phpMyAdmin, and the php side was done using PHPMaker mostly. i changed a few things but nothign to do with passwords.

    Can i trust the php code and database i have? i've validated all *** inputs i can (i don't understand how to validate a name, surely a user can type in any command that will list the directory for example?) and given access only to the users listed in the users table (with a password).

    would this be easy to highjack?
     
  2. Bloo_Fish

    Hitman

    Joined: 9 Nov 2002

    Posts: 748

    Location: Bucks [uk]

    It really is 100% reliant on the code you have used. I'm sure if you posted it here people would be able to spot errors pretty quickly!