Re: Web DNA...

This WebDNA talk-list message is from

2007


It keeps the original formatting.
numero = 68919
interpreted = N
texte = I usually put this into a func.php file that I include into each page. Note the line breaks that should all be one line. Then, you can set your variables like this: $myVariable = GetSQLValueString($_GET['Variable'],'text'); (your variable name) = GetSQLValueString(GET/POST depending ['Incoming Variable Name'],'type of variable from function above'); On 5/1/07 10:15 AM, "David Maish" wrote: > Please do. I had a server compromised awhile back. > > Thanks, Dave > > >> One more thing... >> >> Make sure you validate *ALL* user input with PHP, or you'll be asking >> to get >> hacked. Cross site scripting (XSS) and SQL injection can compromise an >> entire server. I can post a simple function if anyone likes - it's from >> Dreamweaver. ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: Web DNA... ( Clint Davis 2007)
  2. Re: Web DNA... ( "Will Starck" 2007)
  3. Re: Web DNA... ( Donovan Brooke 2007)
  4. Re: Web DNA... ( "Will Starck" 2007)
  5. Re: Web DNA... ( Jay Van Vark 2007)
  6. Re: Web DNA... ( Frank Nordberg 2007)
  7. Re: Web DNA... ( David Maish 2007)
  8. Re: Web DNA... ( "Nitai @ ComputerOil" 2007)
  9. Re: Web DNA... ( Clint Davis 2007)
  10. Re: Web DNA... ( David Maish 2007)
  11. Re: Web DNA... ( Clint Davis 2007)
  12. Re: Web DNA... ( Clint Davis 2007)
  13. Re: Web DNA... ( Ki Song 2007)
  14. Re: Web DNA... ( Clint Davis 2007)
  15. Re: Web DNA... ( Alex McCombie 2007)
  16. Re: Fwd: Web DNA... ( Frank Nordberg 2007)
I usually put this into a func.php file that I include into each page. Note the line breaks that should all be one line. Then, you can set your variables like this: $myVariable = GetSQLValueString($_GET['Variable'],'text'); (your variable name) = GetSQLValueString(GET/POST depending ['Incoming Variable Name'],'type of variable from function above'); On 5/1/07 10:15 AM, "David Maish" wrote: > Please do. I had a server compromised awhile back. > > Thanks, Dave > > >> One more thing... >> >> Make sure you validate *ALL* user input with PHP, or you'll be asking >> to get >> hacked. Cross site scripting (XSS) and SQL injection can compromise an >> entire server. I can post a simple function if anyone likes - it's from >> Dreamweaver. ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Clint Davis

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Emailer on NT! (1998) [showif]/[hideif] question (1997) International Orders (1998) Netscape (2002) all records returned. (1997) Emailer error 550? (1999) Databases.tpl (2000) WML (2000) Apache suffix mapping for .tpl (2000) Emailer prefs in two places ... (1997) Byte Order Mark - removing via webcat? (2006) RE: Missing contexts on NT (1997) [WebDNA] How to catch an error? (2013) Configuring E-mail (1997) Authorize.net? (2003) Plugin or CGI or both (1997) Searching multiple Databases (1997) WebCat2 beta FTP site (1997) I assume it is a safe bet this does not help (1998) Textarea Breaks (2000)