browse by tag: security
sort by
Creating a CAPTCHA image with security code to validate forms
in PHP added by tutorialhelpdesk, on 5/3/2008 captcha form validation image security
In this tutorial you will learn to create a security code image generator, or a CAPTCHA image, that is so helpful against spammers.
comment save report
How to Use PHP's Crypt() Function to Encrypt and Check a Password
in PHP added by Walkere, on 28/1/2008 beginner tutorials encryption passwords php5 security
This tutorial will walk you through using PHP's crypt() function to effectively encrypt a password for storage in a database and later check that password against a user's input.
comment save report
Complete advanced login member system
in PHP added by ineedtutorials, on 17/1/2008 advanced tutorials content management database login mysql security
This tutorial will show you how to create an advanced member login system with PHP, users can register, change password, email activation is included.
comment save report
PHP Captcha Tutorial (in-depth)
in PHP added by techusky, on 2/1/2008 advanced tutorials captcha php5 security verification
This CAPTCHA script allows a user to easily customize things such as the string length, minimum and maximum font size, image size, the font used, and even the characters used, etc... Unlike most CAPTCHA scripts that generate the random text based on an md5 hash of the time, this one lets the user input specific numbers, uppercase, and lowercase characters they want used (or don't want used) in the creation of the CAPTCHA image. It also assures, regardless of the length of the string, that there is at least both 1 random upper and lowercase character in the string, thus making it more difficult for bots. Another feature in this script is that it randomly rotates each character on the image.
comment save report
Creating a simple login script with php and mysql
in PHP added by ineedtutorials, on 31/12/2007 beginner tutorials content management mysql security
Learn to create a simple login system with php and mysql in 7 simple steps
comment save report
Apache Tips and Tricks: Hide PHP version (X-Powered-By)
in PHP added by goodphptutorials, on 30/12/2007 apache headers security
You can configure apache to provide only a minimal amount of information about the installed software versions in its banner. But if you are using the PHP module in your web server (as most of us are), then there is one additional step that need to be completed, and this is what I will show you in this tip.
comment save report
Better Sessions
in PHP added by goodphptutorials, on 25/10/2007 cookies and sessions ip security session hijack
Sessions have inherent problems, as most developers know. A session ID can be easily hijacked, and that can cause major problems with security in a website. There are ways around this - in PHP you can set up sessions so that the session ID can only be transmitted using cookies, but then you prevent those without cookies from logging in. One way around this problem is to tie your session ids to the user's IP address.
comment save report
PHP Security: GET - include
in PHP added by CombinedMinds, on 4/10/2007 get include security
You often find websites with serious but simple to fix security flaws. In this series we will talk about this. This time about GET - include problems.
comment save report
Traverse Directories the Easy Way with Glob
in PHP added by Wildhoney, on 16/9/2007 file handling security session sessions web
There is a powerful yet somewhat unheard of function in PHP titled glob(). Many beginners and intermediates alike struggle with the traversing of directories. Acquiring the directories contents and returning them in a readable format. If only they know how so very easy this task was!
comment save report
Understanding the Life of a Session
in PHP added by Wildhoney, on 15/9/2007 advanced tutorials security session sessions
One of the most vast misconceptions in the PHP world is how sessions really do work. I'm fairly confident most of us know how to start sessions, terminate sessions, regenerate session IDs and easily pass data from 1 page to another. But do you really know how they work inside out?
comment save report
Securing your MySQL queries with sprintf
in PHP added by Wildhoney, on 13/9/2007 programming security sessions
Sprintf in itself will not secure a MySQL query from head to toe. That should be made clear from the word go. There are many more techniques that go into ensuring a MySQL statement is safe to execute on the MySQL server. Sprintf will, however, take a lot of the sting out of any malice.
Not only will your new found knowledge help you when it comes to security, but sprintf and its twin brother with a slight genetic mismatch, printf, are on hand to make your PHP code look a lot more programmer-friendly.
PHP Security: Sending an email
in PHP added by CombinedMinds, on 10/9/2007 email mail security
You probably wouldn't expect it, but the well known function mail() is a often a goldmine for spammers. In this tutorial we'll talk about the danger of using mail() in your PHP powered website.
comment save report
The fastest way to see how many people are online at your site
in PHP added by Nikolas, on 2/9/2007 cookies and sessions online security session
A quick way to see how many people are browsing your site for php enabled web sites.
comment save report
PHP Security: SQL Injection
in PHP added by CombinedMinds, on 26/8/2007 security sql injection
This tutorial will explain SQL Injection. A very common security flaw not much people take serious because its a little bit harder for a cracker to hack.
comment save report
Protecting a Page with Sessions
in PHP added by Dale, on 26/7/2007 cookies and sessions login logout password secure sessions
In this tutorial you will learn how to login using a passcode to view stuff on pages that you have hidden, then also logout. It is all secured by Sessions.
comment save report
Avoiding RFIs
in PHP added by FiSh, on 4/6/2007 file inclusion remote file include rfi security
These are some simple tips to prevent coding RFIs (Remote File Includes) into your PHP scripts.
comment save report
SQL Injection Walkthrough
in PHP added by goodphptutorials, on 12/2/2007 injection security sql
The following article will try to help beginners with grasping the problems facing them while trying to utilize SQL Injection techniques, to successfully utilize them, and to protect themselves from such attacks.
comment save report
Secure File Upload with PHP
in PHP added by Nolte, on 18/1/2007 file handling file upload security tips
PHP makes uploading files easy. You can upload any type of file to your Web server. In spite of security issues that should be addressed before enabling file uploads, the actual mechanisms to allow this are straight forward. In this tutorial we will consider how to upload files to some directory on your Web server. We will also discuss security issues concerned with the file uploading.
comment save report
Login - Logout with a Session in 1 file
in PHP added by goodphptutorials, on 13/1/2007 security session user user authentication
Create a file for Login and Logout (PHP + MySQL) using with a SESSION variable. This file contains Login form, Login authorize program and Logout program.
comment save report
The 10 mistakes you should avoid with PHP
in PHP added by regindk, on 10/1/2007 advanced tutorials mysql php security
A list of the 10 most common mistakes done by PHP developers and how to avoid them.
comment save report