| PHP中SQL注入式攻击的实现与防范 |
| |
| 引用本文: | 李岱,苏国芳. PHP中SQL注入式攻击的实现与防范[J]. 数字社区&智能家居, 2007, 2(8): 379-381 |
| |
| 作者姓名: | 李岱 苏国芳 |
| |
| 作者单位: | 郧阳师范高等专科学校计算机科学系 湖北丹江口442700(李岱),丹江口移民工程学校 湖北丹江口442700(苏国芳) |
| |
| 摘 要: | 具体分析了基于Web技术的开放性应用软件PHP中SQL语句最易受到的注入式攻击的具体表现形式,通过具体实例说明攻击方式及其原理,并指出了详细的解决方案和防范措施,使PHP+SQL设计的与平台无关的Web应用程序的安全性得以加强,使用户更好的将HTML和ActiveX的强大功能应用于PHP应用程序。
|
| 关 键 词: | PHP SQL 注入式攻击 WEB |
| 文章编号: | 1009-3044(2007)08-20379-03 |
| 修稿时间: | 2007-03-27 |
The Realization and the Protection of the SQL Flushbonding Attack in PHP |
| |
| LI Dai,SU Guo-fang. The Realization and the Protection of the SQL Flushbonding Attack in PHP[J]. Digital Community & Smart Home, 2007, 2(8): 379-381 |
| |
| Authors: | LI Dai SU Guo-fang |
| |
| Affiliation: | LI Dai1,SU Guo-fang2 |
| |
| Abstract: | This paper have analysed the concrete manifestation of SQL flushbonding attacks,which was based on the openness of web. Through specific examples to illustrate the attack methods and its principles,and pointed out a detailed solution and countermeasure that strengthens the safety of application program of web without reference to PHP+SQL, and the HTML and ActiveX will enable users to apply their powerful function to the PHP applications. |
| |
| Keywords: | PHP SQL flushbonding attack Web |
| 本文献已被 CNKI 等数据库收录! |
|
