Home > Database > Mysql Tutorial > How to prevent sql injection problem in mysql

How to prevent sql injection problem in mysql

coldplay.xixi
Release: 2020-11-17 09:19:20
Original
3593 people have browsed it

Mysql method to prevent sql injection: 1. Turn on the magic mode of php and set [magic_quotes_gpc = on]; 2. Write the code to filter sql special characters in the website code and convert some special characters; 3 , Turn on the website firewall, IIS firewall, and built-in filtering parameters for SQL injection.

How to prevent sql injection problem in mysql

Mysql method to prevent sql injection:

1. Turn on the magic mode of php and set magic_quotes_gpc = on. When some special characters appear on the front end of the website, they will be automatically converted into other symbols, causing the SQL statement to fail to execute. You can also find a professional website security company to handle it. Domestic SINE Security, NSFOCUS, and Venus are all relatively good ones. They can perform security reinforcement on the website, server security protection, and MySQL security deployment.

2. Write the code to filter SQL special characters in the website code, and convert some special characters, such as single quotes, commas, *, (brackets) AND 1=1, backslash, select union, etc. The sql statements of the query are subject to security filtering to limit the input of these characters and prohibit submission to the backend.

3. Turn on the website firewall, IIS firewall, apache firewall, and nginx firewall, all have built-in filtering parameters for SQL injection. When the user inputs parameters such as get, post, and cookies and submits them, they will be detected and intercepted in advance.

More related free learning recommendations: mysql tutorial(video)

The above is the detailed content of How to prevent sql injection problem in mysql. For more information, please follow other related articles on the PHP Chinese website!

Related labels:
source:php.cn
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Popular Tutorials
More>
Latest Downloads
More>
Web Effects
Website Source Code
Website Materials
Front End Template