Revenue Source

Welcome to the Revenue Source affiliate marketing forums.

You are viewing our internet marketing and SEO forums as a guest which gives you limited access to most of our discussions.  By joining our free community, you will have access to post affiliate marketing topics, communicate privately with other members (PM), exchange SEO strategies, and access many other special features.  Registration is fast, simple and absolutely free so please, join our community today!

If you have any problems, please don't hesitate to contact us.

Go Back   Revenue Source > Site Design & Development > Programming Help
Reload this Page Stefan Esser's Blog: CORE GRASP - PHP Tainted Mode
Tags: , , , , , , ,

Reply
 
LinkBack Thread Tools Search this Thread
Old
  (#1 (permalink))
Affiliate Blogs is Offline
Revenue Source Veteran
Affiliate Blogs has a brilliant future here!
 
Affiliate Blogs's Avatar
 
Join Date: Oct 2005
Posts: 9,223
Jack of All Trades
CyberSpace United States
   
Stefan Esser's Blog: CORE GRASP - PHP Tainted Mode - 08-22-2007
Stefan Esser points out a new patch today - CORE GRASP - from the Core Security Technologies group that provides taint support surrounding the mysql_query function.
Their implementation adds a tainted or not flag for every byte so that it is possible on invocation of mysql_query() to determine any kind of injection.
Unfortunately, Stefan also mentions two big issues it might have from the get-go: the overhead for the memory needed can slow things down and an incorrect parsing in their query handler could lead to injection attacks.


Stefan Esser's Blog: CORE GRASP - PHP Tainted Mode - Read More...
  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply

« Job Posting: AllSearch Professional Staffing Seeks PHP Developer (Lexington, MA or NY | Site News: Blast from the Past - One Year Ago in PHP »

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads for: Stefan Esser's Blog: CORE GRASP - PHP Tainted Mode
Thread Thread Starter Forum Replies Last Post
Stefan Esser's Blog: What site do you want to break today? Affiliate Blogs Programming Help 0 06-18-2007 02:07 PM
Stefan Esser's Blog: PHP 4 - Reference Counter Overflow Fix Affiliate Blogs Programming Help 0 05-21-2007 01:57 PM
Stefan Esser's Blog: Watching the PHP CVS Affiliate Blogs Programming Help 0 05-10-2007 09:16 PM
Stefan Esser's Blog: Suhosin Extension 0.9.17 released Affiliate Blogs Programming Help 0 03-06-2007 01:14 PM
Stefan Esser's Blog: MOPB: First Reactions Affiliate Blogs Programming Help 0 03-06-2007 01:14 PM



© 2004-6 RevenueSource.com.  All rights reserved.  Do not duplicate or redistribute in any form.
This website and its logos/design are property of RevenueSource.com.  All rights reserved. vBSEO 3.2.0 RC7

Contact Us - Affiliate Marketing & SEO Forums - Archive - Top

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34