Training, Open Source Programming Languages

Print friendly page
Home Accessibility Courses Twitter The Mouth Facebook Resources Site Map About Us Contact
 
For 2023 (and 2024 ...) - we are now fully retired from IT training.
We have made many, many friends over 25 years of teaching about Python, Tcl, Perl, PHP, Lua, Java, C and C++ - and MySQL, Linux and Solaris/SunOS too. Our training notes are now very much out of date, but due to upward compatability most of our examples remain operational and even relevant ad you are welcome to make us if them "as seen" and at your own risk.

Lisa and I (Graham) now live in what was our training centre in Melksham - happy to meet with former delegates here - but do check ahead before coming round. We are far from inactive - rather, enjoying the times that we are retired but still healthy enough in mind and body to be active!

I am also active in many other area and still look after a lot of web sites - you can find an index ((here))
What is an SQL injection attack?

It's where an unauthorised user enters illegal data that gets placed into an SQL command, with the purpose of changing the meaning of that SQL command. For example, you might use the SQL query
   SELECT count(id) FROM user where uname = "xxxxxx" and pword = "yyyyy"
to validate a user name and password pair when someone logs in to your application, replacing the xxxxxx and yyyyy with the information the person enters on a form. In testing, that will work fine for you, but if your user were to complete the form so that:
   xxxxxx becomes hack" or 1 = 1 -- "
   yyyyy becomes anything
then returned values will be greater than 0 ... probably allowing an unauthorised login.

How come there's this problem? This is what the command that's run has become:
   SELECT count(id) FROM user where uname = "hack" or 1 = 1 -- "" and pword = "anything"
Anything after the -- sign is treated by most SQL engines as a comment (so the password is unchecked) and every line will match because 1 always equals 1!

Can you prevent this problem in your applications? Yes, absolutely, if you know of the potential problems and do something to avoid them. This isn't going to be a complete paper on SQL security, but you'll do well to start by \ protecting any " and ' characters that the user enters ... that way, your query will say "literally a " " or "literally a ' " rather than anything more dangerous.
(written 2005-08-02, updated 2006-06-05)

 
Associated topics are indexed as below, or enter http://melksh.am/nnnn for individual articles
S161 - Data Access and Security in MySQL
  [192] Current MySQL and PHP paths and upgrades - (2005-01-28)
  [193] The wrong MySQL - (2005-01-29)
  [535] MySQL permissions and privileges - (2005-12-20)
  [647] Checking for MySQL errors - (2006-03-15)
  [947] What is an SQL injection attack? - (2006-11-27)
  [1131] MySQL - Password security (authentication protocol) - (2007-04-02)
  [2204] Images in a database? How big is a database? (MySQL) - (2009-05-28)
  [2263] Mysqldump fails as a cron job - a work around - (2009-06-30)
  [2647] Removing duplicates from a MySQL table - (2010-02-22)
  [3270] SQL - Data v Metadata, and the various stages of data selection - (2011-04-29)
  [4390] Checking MySQL database backups have worked (not failed) - (2015-01-10)
  [4406] Fixing damaged MySQL tables - Error 1712 and Error 2013 - (2015-01-25)
  [4481] Extracting data from backups to restore selected rows from MySQL tables - (2015-05-01)
  [4491] Web Server Admin - some of those things that happen, and solutions - (2015-05-10)
  [4493] Forgotten / lost MySQL root password - (2015-05-16)


Back to
New in the shops
 Previous and next
or
Horse's mouth home		 Forward to
Netless
Some other Articles
Horse's Mouth is a year old
How to check that a string contains a number in Tcl
Full circle - made it back to an old haunt
Netless
What is an SQL injection attack?
New in the shops
simplicity hides real size
Training course material - why we write our own
Where now for dial-up providers?
The next technologies
4759 posts, page by page
Link to page ... 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 87, 88, 89, 90, 91, 92, 93, 94, 95, 96 at 50 posts per page


This is a page archived from The Horse's Mouth at http://www.wellho.net/horse/ - the diary and writings of Graham Ellis. Every attempt was made to provide current information at the time the page was written, but things do move forward in our business - new software releases, price changes, new techniques. Please check back via our main site for current courses, prices, versions, etc - any mention of a price in "The Horse's Mouth" cannot be taken as an offer to supply at that price.

Link to Ezine home page (for reading).
Link to Blogging home page (to add comments).
You can Add a comment or ranking to this page

Like this? ??

Related short articles
What do people use the bus for in Wiltshire - survey interim results.
Chippenham to Salisbury by public transport - what we have and what we could have
What is happening on the 231 bus? What are you going to do about it?
Rumours of bus changes by First in Wiltshire - what we know and suspect
Object and Static methods - what is the difference; example in Python 3
What are callbacks? Why use them? An example in Python
Who was Doctor Beeching and what was his axe?
Rail user groups worried about what is happening on the buses
What would the Wiltshire Council bus cuts mean for Melksham?
The story behind the bus cuts, and what they could mean
What teach you in a week stays with you for a decade
What is make? What is gcc?
Learning not just what a program does, but how to design it in the first place.
Well House Consultants - Python courses / what's special.
Function prototype - what they are and why you should use them - C and C++
Preprocessor directives in C and C++ - what they mean
example of SQLite using a local database file through SQLalchemy
SQLAlchemy - first examples with a Python Object Relationship Mapping system
What does Tcl do if you try to run a command that is not defined?
What and where are the Azores?
Election results - what if we had a party list system?
Starting MySQL. ERROR! The server quit without updating PID file - how we fixed it.
Moving from mysql to mysqli - simple worked example
What is the difference between a function and a method?
Accessing a MySQL database from Python with mysql.connector
A Welsh valley - what the transport looks like in 2015
What FGW passengers want to talk about / and PHP programming to find out
Changing what operators do on objects - a comparison across different programming languages
What a difference a year makes
When I am old, what will worry me?
Learning to program - what are algorithms and design patterns?
What can you and I learn from online quizzes?
Identifying and clearing denial of service attacks on your Apache server
Dot or Colon separator between table name and member in Lua - what is the difference?
Lazy operators in Lua - what they mean, and examples
What would the extra trains from Melksham mean to your journey?
More or less back - what happened to our server the other day
Wiltshire and Melksham Transport - what is going on?
What might you find at a tiny bed and breakfast?
Cacheing class for Python - using a local SQLite database as a key/value store
What to do on a wet weekend in Melksham?
Bus stop audit - what is missing?
Showing what programming errors look like - web site pitfall
What is on OUR pond?
SQL databases from Python - an SQLite example
Which database should I use? MySQL v SQLite
Ruby / SQLite3 example program, showing JOIN v LEFT JOIN
Servlet v JSP (Java Server Page). What is the difference?
Rail services in Wiltshire - up in the air? We need to say what is best required.
Extended and Associated objects - what is the difference - C++ example
What is coming up from Well House in 2013 - public Open Source / IT courses.
this or self - what are they, and what is the difference? (Python)
Storing your intermediate data - what format should you you choose?
What is a web framework?
PHP variables - dynamically typed. What does that mean?
The components of an Apache httpd / Tomcat / MySQL stack and what each does
What a difference a year made - Melksham Campus
What makes Well House Manor different?
TransWilts trains - what the next franchise period will bring
Injection Attacks - PHP, SQL, HTML, Javascript - and how to neutralise them
What a difference a year makes
Excellent Rail News - what it really means
Programming languages - what are the differences between them?
Private, Protected, Public in Ruby. What about interfaces and abstract classes in Ruby?
Melksham - placed 2254 out of 2255. What can be done about it?
What is a metatable? How do I set one up? How do I use them? Lua
Queen to visit eight Wiltshire areas - will she know what she misses in the other 13 areas?
Weak references in Lua - what are they, and why use them?
What is happening in 59 days time in Melksham?
What is Make?
Design Patterns - what are they? Why use them?
Perl - calls to methods that use => - what do they mean?
Transport in Cambridgeshire - seen by an outside observer. What can Wiltshire learn?
Adding Expect on top of Tcl - what is it and where can I get a training course to learn about it?
What would an appropriate train service on the TransWilts line mean
What order are operations performed in, in a Perl expression?
Microblogging - what I should have tweeted in the last 48 hours
Python sets and frozensets - what are they?
MySQL, MySQLi, PDO or something else - how best to talk to databases from PHP
Apache Internal Dummy Connection - what is it and what should I do with it?
© WELL HOUSE CONSULTANTS LTD., 2024: 48 Spa Road • Melksham, Wiltshire • United Kingdom • SN12 7NY
PH: 01144 1225 708225 • EMAIL: info@wellho.net • WEB: http://www.wellho.net • SKYPE: wellho

PAGE: http://www.wellho.net/mouth/401_What ... tack-.html • PAGE BUILT: Sun Oct 11 16:07:41 2020 • BUILD SYSTEM: JelliaJamb