Re: FN-FORUM: (Orginally No Subject)

date posted 1st November 2003 11:46

O right thanks - I hadn't realised.

----- Original Message -----
From: "Nick Grimshaw" [EMAIL REMOVED]
To: [EMAIL REMOVED]
Sent: Saturday, November 01, 2003 11:57 AM
Subject: RE: FN-FORUM: (Orginally No Subject)


>
> Pam, about her SQL:
> > I am changing it to a post
> > anyway
>
> Be aware that this doesn't actually make the site more secure - it's just
> security through obscurity (i.e. it's no longer obvious that you could
carry
> out an SQL injection attack). It's easily possible to fake POST requests,
so
> you should still make sure that you vet the posted parameters.
>
> - Nick Grimshaw
> { if you're not part of the solution, you're part of the precipitate. }
>
>
> --
> * The Web Design Business Kit *
> Find out how to price your work, market your business, make pitches
> that get the client, write effective proposals and beat the competition
> into the ground. Download 4 free sample chapters.
> http://sitepoint.com/launch/b7c91e/
>
> To advertise here: http://www.freelancers.net/advertising.html
>
>