Limit on number of queries from CGI or PHP (security)

Поиск
Список
Период
Сортировка
От Rikul Patel
Тема Limit on number of queries from CGI or PHP (security)
Дата
Msg-id 20001017080031.19989.qmail@web3403.mail.yahoo.com
обсуждение исходный текст
Ответы Re: Limit on number of queries from CGI or PHP (security)  (Alfred Perlstein <bright@wintelcom.net>)
Re: Limit on number of queries from CGI or PHP (security)  (Michelle Murrain <mpm@norwottuck.com>)
Re: Limit on number of queries from CGI or PHP (security)  (Charles Tassell <ctassell@isn.net>)
Список pgsql-general
Дерево обсуждения 
Hi,

Is there any way I can restrict number of queries to
only one? Here's the problem:

If PHP script gets some data as input from user, and
PHP scripts tries to put this data into Postgresql,
what's keeping the user to modify the data in way to
have postgresql execute two queries.

So instead of some PHP script generating query like
"select * from table where text='some text' or id=1",
some malicious user could make it generate "select *
from table where text='some text' or id=1;delete from
table"

Thanks,
Rikul

__________________________________________________
Do You Yahoo!?
Yahoo! Messenger - Talk while you surf!  It's FREE.
http://im.yahoo.com/

В списке pgsql-general по дате отправления:

Предыдущее
От: "Makiko Kudo"
Дата:
Сообщение: temporary table size
Следующее
От: Colin Taylor
Дата:
Сообщение: Getting DateStyle Using C++ Library