want to join us? register, it's easy | help

browse by tag: security

sort by

newest, oldest, most popular


category icon

Protection from offline viewers

in PHP added by goodphptutorials, on 4/12/2005 downloading hotlinks offline protection security

If you have a pay-for-traffic webhosting deal you don't want one anxious user gobbling up a year's traffic by normal users by downloading your website for their own offline browsing pleasure

comment save report
category icon

Introduction to HTTP Response Splitting

in PHP added by goodphptutorials, on 4/12/2005 cross site scripting security vulnerabities xss

This is a fairly new web application vulnerability. It can be used for the following purposes.

comment save report
category icon

Secure Programming in PHP

in PHP added by goodphptutorials, on 15/12/2005 security

This article discusses the common threats and challenges of programming secure PHP applications and practical methods for doing so.

comment save report
category icon

Top 7 PHP Security Blunders

in PHP added by goodphptutorials, on 23/12/2005 security variables

PHP has many features that are friendly to beginning programmers. However, many of these features can lead a programmer inadvertently to allow security holes to creep into a Web application.

comment save report
category icon

Securing Forms with Random Noisy Images

in PHP added by goodphptutorials, on 21/1/2006 capatcha form image process security user validation

This tutorial is intended for those who want to ensure that the data retrieved by a form processor PHP is sent by the expected form, not another application or by hand. An understanding form data processing is assumed. A basic knowledge of image creation and manipulation functions is also required.

comment save report
category icon

Allowing Registration-Required Binary Downloads

in PHP added by goodphptutorials, on 24/2/2006 downloads mp3 pdf php4 protection registration security

You have a great PDF, MP3, or binary file to distribute, but you want to know who's downloading it. How hard could it be to write a little PHP program to require registration before letting your goodies loose? Robert Bernier demonstrates that it's actually pretty easy.

comment save report
category icon

Foiling Cross-Site Attacks

in PHP added by goodphptutorials, on 11/3/2006 cross site scripting security xss

Security is a nebulous topic. Web applications are often described as being secure or insecure, and this yields dangerous misconceptions and confusion. Just how secure is a secure Web application?

comment save report
category icon

SQL Injections in PHP with MySQL

in PHP added by goodphptutorials, on 16/3/2006 get post security session sql injection

SQL injections are a major security risk in many PHP applications. Injections are caused when a web developer allows the end-user to manipulate a variable that is being inserted into a database query string, generally through the $_GET, $_POST or $_SESSION superglobals

comment save report
category icon

SQL Injections with Microsoft SQL & Sybase

in PHP added by goodphptutorials, on 17/3/2006 security

Microsoft SQL and Sybase use a different method to escape quotes, which means they need special treatment when it comes to SQL Injections in PHP.

comment save report
category icon

PHP Security Image

in PHP added by goodphptutorials, on 3/4/2006 captcha image media security

This in depth tutorial will show you how to create a security image to prevent bots from flood-registering your site.

comment save report
category icon

Visual Verification in PHP

in PHP added by goodphptutorials, on 8/4/2006 captcha security spam

Verification of form data is used to determine whether or not the submission is from a user or from a "bot". Most forms now include image verification for just this reason. This article will demonstrate how to create a simplified image verification system..

comment save report
category icon

Writing Secure PHP

in PHP added by goodphptutorials, on 8/5/2006 security

PHP is a very easy language to learn, and many people without any sort of background in programming learn it as a way to add interactivity to their web sites. Unfortunately, that often means PHP programmers, especially those newer to web development, are unaware of the potential security risks their web applications can contain. Here are a few of the more common security problems and how to avoid them.

comment save report
category icon

Password Hashing

in PHP added by goodphptutorials, on 29/5/2006 security

In this article I'm going to cover password hashing, a subject which is often poorly understood by newer developers. Recently I've been asked to look at several web applications which all had the same security issue - user profiles stored in a database with plain text passwords.

comment save report
category icon

XSS, Cookies, and Session ID Authentication ? Three Ingredients for a Successful Hack

in PHP added by goodphptutorials, on 14/8/2006 attack bug cross site scripting security xxs

Cross site scripting (XSS) errors are generally considered nothing more than a nuisance ? most people do not realize the inherent danger these types of bugs create. In this article Seth Fogie looks at a real life XSS attack and how it was used to bypass the authentication scheme of an online web application, leading to "shell" access to the web server.

comment save report
category icon

How to Encrypt Passwords in the Database

in PHP added by goodphptutorials, on 16/9/2006 security

If you are developing a password-protected web site, you have to make a decision about how to store user password information securely. This article will show you how to encrypt user passwords with md5 algorithm and how to start using encrypted passwords if you already have users database ready.

comment save report
category icon

Pro PHP Security / Preventing SQL Injection

in PHP added by goodphptutorials, on 12/11/2006 security

PHP is an extremely powerful yet easy-to-learn scripting language, affording even relatively inexperienced programmers the opportunity to create complex, dynamic websites. It is, however, notoriously difficult to ensure privacy and security of internet services.

comment save report
category icon

The 10 mistakes you should avoid with PHP

in PHP added by regindk, on 10/1/2007 advanced tutorials mysql php security

A list of the 10 most common mistakes done by PHP developers and how to avoid them.

comment save report
category icon

Login - Logout with a Session in 1 file

in PHP added by goodphptutorials, on 13/1/2007 security session user user authentication

Create a file for Login and Logout (PHP + MySQL) using with a SESSION variable. This file contains Login form, Login authorize program and Logout program.

comment save report
category icon

Secure File Upload with PHP

in PHP added by Nolte, on 18/1/2007 file handling file upload security tips

PHP makes uploading files easy. You can upload any type of file to your Web server. In spite of security issues that should be addressed before enabling file uploads, the actual mechanisms to allow this are straight forward. In this tutorial we will consider how to upload files to some directory on your Web server. We will also discuss security issues concerned with the file uploading.

comment save report
category icon

Secure PHP installation on unix/linux systems

in PHP added by quipo, on 27/1/2007 apache howto linux php php5 security unix

Simple guide to a more secure PHP installation on unix/linux systems

comment save report
category icon

SQL Injection Walkthrough

in PHP added by goodphptutorials, on 13/2/2007 injection security sql

The following article will try to help beginners with grasping the problems facing them while trying to utilize SQL Injection techniques, to successfully utilize them, and to protect themselves from such attacks.

comment save report
category icon

Avoiding RFIs

in PHP added by FiSh, on 4/6/2007 file inclusion remote file include rfi security

These are some simple tips to prevent coding RFIs (Remote File Includes) into your PHP scripts.

comment save report
category icon

PHP Abstract Episode 1 - PHP Secuity Tips

in PHP added by CalEvans, on 6/6/2007 podcast security

Eli talks to us about practical tips you can use to help make your application more secure.

comment save report
category icon

Basic image captcha

in PHP added by FiSh, on 11/6/2007 captcha gdlib image image verification security

Create a basic image captcha script for your forms.

comment save report
category icon

Protecting a Page with Sessions

in PHP added by Dale, on 26/7/2007 cookies and sessions login logout password secure sessions

In this tutorial you will learn how to login using a passcode to view stuff on pages that you have hidden, then also logout. It is all secured by Sessions.

comment save report