Re: Top Ten PHP Security Issues, a preliminary list

From: Chung Leong (chernyshevsky_at_hotmail.com)
Date: 02/14/04

• Next message: Chung Leong: "Re: tracking pixel in a processing script, instead of HTML page"
• Previous message: Chung Leong: "Re: Top Ten PHP Security Issues, a preliminary list"
• In reply to: Jochen Daum: "Re: Top Ten PHP Security Issues, a preliminary list"
• Next in thread: Alex Farran: "Re: Top Ten PHP Security Issues, a preliminary list"
• Reply: Alex Farran: "Re: Top Ten PHP Security Issues, a preliminary list"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Date: Fri, 13 Feb 2004 18:52:21 -0500

Hi Jochen!

Uzytkownik "Jochen Daum" <jochen.daum@cans.co.nz> napisal w wiadomosci
news:qd9o20165r0aopi8buk6j2s2opvchbdokn@4ax.com...
> Other decisions, such as security against SQL injection need to be
> made on content, because people might wanna run a forum about SQL
> injection code. Again, why not require the user to log in.

The user is logged in. The problem is that the attacker can control his
browser using Javascript and do nasty things as him.

I guess a better solution to this problem would be to require the
accompaniment of an unique id, stored in a hidden, with every POST. The
receiving script would check the id posted against then one stored in the
session, and rejects the request if they don't match. That requires fixing
every form though. Checking the referrer is much easier.

---

• Next message: Chung Leong: "Re: tracking pixel in a processing script, instead of HTML page"
• Previous message: Chung Leong: "Re: Top Ten PHP Security Issues, a preliminary list"
• In reply to: Jochen Daum: "Re: Top Ten PHP Security Issues, a preliminary list"
• Next in thread: Alex Farran: "Re: Top Ten PHP Security Issues, a preliminary list"
• Reply: Alex Farran: "Re: Top Ten PHP Security Issues, a preliminary list"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Relevant Pages [Full-Disclosure] Serious Possible SQL Injection in munchahouse.com Ecommerce site ... Possible SQL Injection in munchahouse.com ... 2003-2004 by YSGNet* 01 Security ... Some vulnerabilities have been discovered in munchahouse ... Successful exploitation may disclose sensitive information, ... (Full-Disclosure) [Full-Disclosure] Serious SQL Injection in munchahouse.com : a shopping site., ... Serious SQL Injection in munchahouse.com ... 2003-2004 by YSGNet* 01 Security ... Some vulnerabilities have been discovered in munchahouse ... Successful exploitation may disclose sensitive information, ... (Full-Disclosure) [Full-disclosure] [PT-2009-13] TinX CMS SQL Injection Vulnerability ... TinX CMS SQL Injection vulnerability ... Positive Technologies Research Team has discovered a SQL Injection ... Research Team) using professional network security scanner MaxPatrol. ... (Full-Disclosure) RE: Checkpoint SmartDefense ... Another option that can be used instead of the default SQL injection ... protection is the "worm catcher" - you can write pretty good regular ... As my expertise is web applications security, I can comment only on the ... attacks such as SQL injection or XSS, ... (Focus-IDS) RE: SQL Injection Legalities ... but my interpretation of this law is that the "crime" ... > enter search terms at your discretion. ... > a security mechanism in this case. ... > system as a result of the SQL injection. ... (Pen-Test)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(13)