PHP

PHPSQL injection prevention methods and injection analysis. 1. php Tutorial configuration file php. the magic_quotes_gpc option in ini is not enabled and is set to off2. the developer does not check and escape the data type. In fact, the second

Session Security in php is easy to understand. Attackers can obtain session IDs in many ways by viewing plaintext communication. Therefore, it is dangerous to put Session IDs in URLs or in cookies transmitted through unencrypted connections; there

Php simply generates a verification code. Use the functions provided by php to generate image verification codes. For more information, see .? In the php Tutorial, muststartorcontinuesessionandsaveCAPTCHAstringin $ _ SE uses the functions provided

Php is used to obtain the data of the form array. This is a form code that I wrote before. Compile is a form code that I wrote earlier. Print_r ($ a1 );?> I thought I could get more at a time, but it didn't work. I found a solution

A very practical php verification code class. A more practical php graphic verification code generation class, the call method is also very simple, you can refer to a friend in need. The code is as follows: Copy the code? PhpclassImageCode {private $

For more information about phpmd5 encryption functions, see. Many php developers will use this md () encryption function, but some of them may not know it. let's take a look at the md5 () function parameters today. the md5 (string, raw) md5 ()

Linux prevents php from forging local files. For example, we only talk about linux systems, but the prevention method is effective in any system. let's take a look at the operation. you can use the code below to copy the code www. xx. for example,

PHP uses the strpos function to shield keyword programs. When we make message boards, we often need to block some keywords. below I will introduce the use of txt to save and block keywords, and then filter them based on the data submitted by the

Summary of some hidden security code in php. The security of program code is the embodiment of a programmer's quality in many aspects of the development application. I will summarize my experience below. if you need to know about it, please refer to

Php prevents malicious code refreshing and ticket refreshing. Malicious refresh means to constantly refresh the submitted page, resulting in a large amount of invalid data, next, we will summarize the php methods to prevent malicious page refreshing.

Phpmysql_real_escape_string anti-SQL injection details. Anti-SQL injection is a step we must do during program development. next I will introduce some anti-SQL injection methods using mysql_real_escape_string in php and mysql development. M anti-SQL

Php code malicious ddos attack solution. I have previously met a malicious ddos attack on php code and occupied all the server resources, which makes the website unavailable. next I will introduce the solution. Solution: modify the p php code. a

Phpeval () function usage introduction. Our php programmers may use the eval () function to perform some operations. many hackers can use this function to make a big fuss, he can directly accept requests submitted by users. our php programmers may

PHP anti-injection function code summary. Anti-injection in php generally writes a global file to filter special strings. This article summarizes various php anti-injection function code, at the same time, you can refer to anti-injection in php to

Php custom complex MD5 encryption function. In this article, we will first customize the complex MD5 encryption function to encrypt the password, and then encrypt it by the system's md5 encryption program. next I will introduce the implementation

PHP custom error handling function. In php development, we usually use php's built-in error handling methods to handle some errors, however, we need to customize some error processing mechanisms to solve the problems that cannot be solved by the

Disable php execution of system command functions in php security configuration. Php's four functions exec, shell_exec, system, passthru can execute system commands, which poses a threat to system security. if not, you can disable the code as

PHP prevents remote illegal submission of form program code. Preventing remote submission of forms is to prevent hackers from illegally submitting data remotely to secure our website. next I will introduce how to prevent remote illegal submission of

PHP. INI (1 ). [PHP]; PHP is a constantly evolving tool, and its functions are constantly being deleted. ini settings change can reflect a considerable change. before using the new PHP version, study [PHP]. PHP is still a developing tool, and its

Chinese PHP. INI (2 ).;;;;;;;;;;;;;;;;;;;;;;;;;; PathsandDirectories ;;;;;;;;;;;;;;;;;;;;;;;;;;;;include_path; include path settings, UNIX: path1: path2Windows: path1; path2doc_root; php page ;;;;;;;;;;;;;;;;;;;;;;;;; ; Paths and Directories; ;;;;;;;