Re: Web DNA...

This WebDNA talk-list message is from

2007


It keeps the original formatting.
numero = 68919
interpreted = N
texte = I usually put this into a func.php file that I include into each page. Note the line breaks that should all be one line. Then, you can set your variables like this: $myVariable = GetSQLValueString($_GET['Variable'],'text'); (your variable name) = GetSQLValueString(GET/POST depending ['Incoming Variable Name'],'type of variable from function above'); On 5/1/07 10:15 AM, "David Maish" wrote: > Please do. I had a server compromised awhile back. > > Thanks, Dave > > >> One more thing... >> >> Make sure you validate *ALL* user input with PHP, or you'll be asking >> to get >> hacked. Cross site scripting (XSS) and SQL injection can compromise an >> entire server. I can post a simple function if anyone likes - it's from >> Dreamweaver. ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: Web DNA... ( Clint Davis 2007)
  2. Re: Web DNA... ( "Will Starck" 2007)
  3. Re: Web DNA... ( Donovan Brooke 2007)
  4. Re: Web DNA... ( "Will Starck" 2007)
  5. Re: Web DNA... ( Jay Van Vark 2007)
  6. Re: Web DNA... ( Frank Nordberg 2007)
  7. Re: Web DNA... ( David Maish 2007)
  8. Re: Web DNA... ( "Nitai @ ComputerOil" 2007)
  9. Re: Web DNA... ( Clint Davis 2007)
  10. Re: Web DNA... ( David Maish 2007)
  11. Re: Web DNA... ( Clint Davis 2007)
  12. Re: Web DNA... ( Clint Davis 2007)
  13. Re: Web DNA... ( Ki Song 2007)
  14. Re: Web DNA... ( Clint Davis 2007)
  15. Re: Web DNA... ( Alex McCombie 2007)
  16. Re: Fwd: Web DNA... ( Frank Nordberg 2007)
I usually put this into a func.php file that I include into each page. Note the line breaks that should all be one line. Then, you can set your variables like this: $myVariable = GetSQLValueString($_GET['Variable'],'text'); (your variable name) = GetSQLValueString(GET/POST depending ['Incoming Variable Name'],'type of variable from function above'); On 5/1/07 10:15 AM, "David Maish" wrote: > Please do. I had a server compromised awhile back. > > Thanks, Dave > > >> One more thing... >> >> Make sure you validate *ALL* user input with PHP, or you'll be asking >> to get >> hacked. Cross site scripting (XSS) and SQL injection can compromise an >> entire server. I can post a simple function if anyone likes - it's from >> Dreamweaver. ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Clint Davis

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

More on the email templates (I like it) (1997) Pref settings? (1998) Dealer locator (1998) AmEx, shipping (2000) WebMerchant 2.1.2 (1998) # of real domains on 1 web server (1997) Multiple Users.db Possible? (1997) Searching by Date Comparison (2000) Authenticate and IIS (1997) Text vs. Math (2000) convertwords BUG (2002) Summing fields (1997) price formula (1999) RE: [WebDNA] OT: FCKeditor (2008) Netscape 3.01 can't see db in form (was problems problemsproblems) (1997) Sending E-mail (1997) Writing [raw] to a file (2000) Multiple prices (1997) Running _every_ page through WebCat-error.html (1997) [ConvertChars] problem (1997)