|
You last visited: Today at 00:41
Advertisement
SQL Injection Protection
Discussion on SQL Injection Protection within the Last Chaos forum part of the MMORPGs category.
11/01/2016, 02:41
|
#1
|
elite*gold: 0 
Join Date: Feb 2015
Posts: 86
Received Thanks: 26
|
SQL Injection Protection
I am wanting to buy sql injection protection for my server add me
skype live:vexmega
|
|
|
|
11/01/2016, 09:04
|
#2
|
elite*gold: 50
Join Date: Feb 2010
Posts: 3,038
Received Thanks: 2,519
|
You dont need to buy stuff like that.
SQL injection is a kind of website attack, if you have a website like the cms you are safe.
|
|
|
|
|
11/02/2016, 07:51
|
#3
|
elite*gold: 0
Join Date: Jul 2015
Posts: 219
Received Thanks: 19
|
Quote:
Originally Posted by EEOI
You dont need to buy stuff like that.
SQL injection is a kind of website attack, if you have a website like the cms you are safe.
|
Toxic's cms doesnt have sql injection o.O
|
|
|
|
|
11/02/2016, 19:15
|
#4
|
elite*gold: 0
Join Date: Jul 2013
Posts: 435
Received Thanks: 480
|
Make sure MySQL is listening on localhost which prevents outside connections. From there as long as your website is secure with a sanitization function to ensure input is clean w/ preferably the use of PDO, then you're safe.
|
|
|
|
|
11/03/2016, 14:52
|
#5
|
elite*gold: 2
Join Date: May 2010
Posts: 2,254
Received Thanks: 1,919
|
Quote:
Originally Posted by PizzaGuy
Make sure MySQL is listening on localhost which prevents outside connections. From there as long as your website is secure with a sanitization function to ensure input is clean w/ preferably the use of PDO, then you're safe.
|
Nope, its no problem to use a user with remote connection, you can insert, delete, update with a local user like a remote user... better way is to set permissions for users 4 tables.
Use mysqli to connect, pdo is simple too but with mysqli you can replace the mysql connect with this function 1:1.
Do a whitelist for inputs.
|
|
|
|
|
11/03/2016, 17:18
|
#6
|
elite*gold: 265
Join Date: Jul 2009
Posts: 735
Received Thanks: 2,147
|
PDO > mysqli
|
|
|
|
|
11/03/2016, 21:53
|
#7
|
elite*gold: 0
Join Date: Jul 2013
Posts: 435
Received Thanks: 480
|
Quote:
Originally Posted by Ih˘săs123
Nope, its no problem to use a user with remote connection, you can insert, delete, update with a local user like a remote user... better way is to set permissions for users 4 tables.
Use mysqli to connect, pdo is simple too but with mysqli you can replace the mysql connect with this function 1:1.
Do a whitelist for inputs.
|
The MySQL server doesn't establish a remotely connectable socket when it's bound to localhost. When that is done there is no communicating with MySQL other than locally. You cannot remote into MySQL and control it remotely when it's bound to localhost. So unless you have root access to the server or have abused the web server or web script, you'll never gain access to the database server. Which can be tough for management but it's bulletproof secure. I would also stick to PDO and binding.
|
|
|
|
|
11/07/2016, 12:00
|
#8
|
elite*gold: 2
Join Date: May 2010
Posts: 2,254
Received Thanks: 1,919
|
Quote:
Originally Posted by wizatek
PDO > mysqli
|
Named parameter, but mysqli is a little bit faster qqq.
I like speed, so PDO < mysqli for me.
|
|
|
|
 |
Similar Threads
|
[C++] Dll Injection Protection
06/27/2015 - Metin2 Hacks, Bots, Cheats, Exploits & Macros - 14 Replies
C++ SOURCE: Private Paste ID: 7dBJek5E
How to do?
In the clientside:
from ctypes import windll;
import os;
if windll.kernel32.GetModuleHandleA("AntiHack.dl l") == 0:
|
Cloud Protection | DDoS Protection For SRO Servers | 300Gbps Protection | Cheap
09/13/2013 - Silkroad Online Trading - 3 Replies
Looks like I can't post images, if you'd like to see the thread design, please Go Here: http://i.imgur.com/IS4q7Kw.png.
Text version
Intoduction:
Features:
|
[Service]Client protection against DLL injection, special encryption, new algorythms.
11/19/2012 - Metin2 Trading - 4 Replies
Hi, I don't know if I'm in the good section but I don't really know where I have to post that. I think it's a part of release, if you think not you can move it, Thanks.
I'm here to propose you a Protection Package for your client.
Probably the best in the world, for sale.
If you buy, you will have:
An unpacker, a new game file, 2 new launchers, pack root with new protections against cheats, extractor ...
We use your root and can also use your launcher and your game but the packer will...
|
All times are GMT +1. The time now is 00:42.
|
|
