Limit on number of queries from CGI or PHP (security)
| От | Rikul Patel |
|---|---|
| Тема | Limit on number of queries from CGI or PHP (security) |
| Дата | |
| Msg-id | 20001017080031.19989.qmail@web3403.mail.yahoo.com обсуждение исходный текст |
| Ответы |
Re: Limit on number of queries from CGI or PHP (security)
Re: Limit on number of queries from CGI or PHP (security) Re: Limit on number of queries from CGI or PHP (security) |
| Список | pgsql-general |
Hi, Is there any way I can restrict number of queries to only one? Here's the problem: If PHP script gets some data as input from user, and PHP scripts tries to put this data into Postgresql, what's keeping the user to modify the data in way to have postgresql execute two queries. So instead of some PHP script generating query like "select * from table where text='some text' or id=1", some malicious user could make it generate "select * from table where text='some text' or id=1;delete from table" Thanks, Rikul __________________________________________________ Do You Yahoo!? Yahoo! Messenger - Talk while you surf! It's FREE. http://im.yahoo.com/
В списке pgsql-general по дате отправления: