13. Security Methods

In This Chapter

Preventing Spam 402

Validating Data by Type 409

Validating Files by Type 414

Preventing XSS Attacks 418

Using the Filter Extension 421

Preventing SQL Injection Attacks 425

Review and Pursue 432

The security of your Web applications is such an important topic that it really cannot be overstressed. Although security-related issues have been mentioned throughout this book, this chapter will help to fill in certain gaps, finalize other points, and teach several new things.

The topics discussed here include: preventing spam; typecasting variables; preventing cross-site scripting (XSS) and SQL injection attacks; the new Filter extension; and validating uploaded files by type. This chapter will use five discrete ...

Get PHP and MySQL for Dynamic Web Sites: Visual QuickPro Guide, Fourth Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.