blahblahblah.php?date=foo';DROP%20TABLE%20XXX
Buffy ,'Help'
Buffistechnology 3: "Press Some Buttons, See What Happens."
Got a question about technology? Ask it here. Discussion of hardware, software, TiVos, multi-region DVDs, Windows, Macs, LINUX, hand-helds, iPods, anything tech related. Better than any helpdesk!
Does it help that the page uses read-only access and that there's nothing in the database that I care if people see?
Does it help that the page uses read-only access and that there's nothing in the database that I care if people see?
Yeah, it helps. But avoiding that sort of thing is a good habit to get into.
While riding home, I think I figured out a simple way to avoid injection attacks: simply validate that the $date variable is exactly 8 numeric digits.
That should protect me, yes?
That should protect me, yes?
Yes.
Thanks.
Annnnndddd... I think I figured out the answer to my original question. I had ORDER BY before the WHERE. By flipping them, I'm finally getting some data! Whee!
interesting development:
Cisco may have lost rights to iPhone trademark last year and tried to extend the trademark with the patent office by slapping a sticker on an existing product.
Is it worth it to upgrade the black Macbook to 2GB memory?
Does anyone have any webcam recommendations for PCs--both laptop and desktop units, or resources for same?
Is it worth it to upgrade the black Macbook to 2GB memory?
Depends on what you want to run on it. Most of the time, my MacBook with 2GB has half to 2/3s of its memory unused. But when I run an XP virtual machine (via Parallels) the amount of unused memory drops quite a bit. When I run OS X, XP and Linux all at once pretty much all the memory gets used.
So I'd say that 1GB might be adequate unless you plan on running something that uses a lot of memory like Photoshop or virtual machines.
OTOH, 2GB is not too expensive so you might want to go that route anyway.