Thread: Security in PHP
View Single Post
  #57 (permalink)  
Old 03-28-2008, 12:04 AM
Jeyaseelansarc Jeyaseelansarc is offline
D-Web Genius
  
Join Date: Mar 2007
Location: Chennai
Posts: 1,162
Jeyaseelansarc is on a distinguished road
Send a message via AIM to Jeyaseelansarc
Default Re: Security in PHP
It's even possible to take preventative measures to warn when forging is being attempted. If you know ahead of time exactly where a variable should be coming from, you can check to see if the submitted data is coming from an inappropriate kind of submission. While it doesn't guarantee that data has not been forged, it does require an attacker to guess the right kind of forging. If you don't care where the request data comes from, you can use $_REQUEST as it contains a mix of GET, POST and COOKIE data.
__________________
With,
J. Jeyaseelan
Everything Possible
Reply With Quote