¡@
php Programming Glossary: potentialWhat's the best method for sanitizing user input with PHP? http://stackoverflow.com/questions/129677/whats-the-best-method-for-sanitizing-user-input-with-php
PHP: Storing 'objects' inside the $_SESSION http://stackoverflow.com/questions/132194/php-storing-objects-inside-the-session find out if it is really such a good idea or if there are potential pitfalls involved. I know that if I had a single point of entry..
How to 'insert if not exists' in MySQL? http://stackoverflow.com/questions/1361340/how-to-insert-if-not-exists-in-mysql exist it will be created. This second method has several potential weaknesses including non abortion of the query in case any other..
The mysql extension is deprecated and will be removed in the future: use mysqli or PDO instead http://stackoverflow.com/questions/13944956/the-mysql-extension-is-deprecated-and-will-be-removed-in-the-future-use-mysqli upgrading PHP until you have identified all of the potential areas of impact planned around each of them and then thoroughly..
mysqli or die, does it have to die? http://stackoverflow.com/questions/15318368/mysqli-or-die-does-it-have-to-die an error message out revealing some system internals to a potential attacker it is scaring innocent user with strange message. What's..
Resumable downloads when using PHP to send the file? http://stackoverflow.com/questions/157318/resumable-downloads-when-using-php-to-send-the-file something obvious and I have most definitely ignored some potential sources of errors but it should be a start. There's a description..
Reference - frequently asked questions about PDO [closed] http://stackoverflow.com/questions/15990857/reference-frequently-asked-questions-about-pdo error message may reveal some sensitive information to a potential attacker yet confuse a honest visitor. A custom exception handler..
Why is PDO better for escaping MySQL queries/querystrings than mysql_real_escape_string? http://stackoverflow.com/questions/1742066/why-is-pdo-better-for-escaping-mysql-queries-querystrings-than-mysql-real-escape their 'pg_doSomthing ' counterpart always checking for potential differences in parameter handling . The same would be the case..
Stemming algorithm that produces real words http://stackoverflow.com/questions/190775/stemming-algorithm-that-produces-real-words the stems back to real words. I can basically see two potential ways to do this Locate or create a large dictionary which maps..
http://stackoverflow.com/questions/1911382/sanitize-file-path-in-php I'm hoping to make my tiny program secure so that potential malicious users cannot view sensitive files on the server. path..
browscap ini directive not set http://stackoverflow.com/questions/2036956/browscap-ini-directive-not-set that are scared of using it and I've seen some great potential in the language. I digress here is the error. browscap ini directive..
PHP - CSRF - How to make it works in all tabs? http://stackoverflow.com/questions/2695153/php-csrf-how-to-make-it-works-in-all-tabs back forward navigation. You generally want to manage the potential storage explosion by expiring old tokens by age and or number..
Getting the name of a child class in the parent class (static context) http://stackoverflow.com/questions/283004/getting-the-name-of-a-child-class-in-the-parent-class-static-context binding in PHP 5.3 mentioned in comments . note there are potential problems in it's current implementation src . class Base public..
mysqli giving “Commands out of sync” error - why? http://stackoverflow.com/questions/3632075/mysqli-giving-commands-out-of-sync-error-why is a special case because a stored procedure has the potential for returning multiple result sets each of which may have its..
Why don't PHP attributes allow functions? http://stackoverflow.com/questions/3960323/why-dont-php-attributes-allow-functions yet so there's no way to avoid generating the opcodes. A potential solution would be to build a new opcode array that was scoped..
How can I run a PHP script in the background after a form is submitted? http://stackoverflow.com/questions/4626860/how-can-i-run-a-php-script-in-the-background-after-a-form-is-submitted their notification is being posted. This leads to other potential problems all that have possible solutions that I feel are less..
http://stackoverflow.com/questions/4983915/is-time-a-good-salt fat target that will be used on a substantial number of potential targets. Random selection makes the targets as thin as is practical...
Apache rewrite - get original URL in PHP http://stackoverflow.com/questions/5493075/apache-rewrite-get-original-url-in-php
http://stackoverflow.com/questions/5768380/php-mysql-and-time-zones date Keep MySQL in the blissful state of UTC to remove one potential DST annoyance. That addresses most of the points. The last thing..
How to best store user information and user login and password http://stackoverflow.com/questions/947618/how-to-best-store-user-information-and-user-login-and-password that having information split among tables provides the potential to protect your additional data. php mysql security passwords..
|