You aren't setting the server correctly.
For more information: PHP: odbc_connect - Manual
You aren't setting the server correctly.
For more information: PHP: odbc_connect - Manual
Last edited by wutyes; 08-01-11 at 04:20 PM.
I guess you're the the author and you remade it.Originally Posted by zyberscape
Last edited by Military; 08-01-11 at 04:52 PM.
Mind explaining what I mucked up?
If you are talking about me removing the "nl2br()" that is because there is no need for it, we are already stripping slashes.
Last edited by wutyes; 08-01-11 at 04:56 PM.
Works perfect for me ;) thanks
Posted via Mobile Device
Meh, I guess.. It looks sorta like the register released in the flyff section; http://forum.ragezone.com/f457/v15-r...script-672042/
But whatever. Nice job
+1.
Last edited by BGxApixen; 12-01-11 at 01:29 AM.
Gone.
Last edited by wutyes; 27-03-16 at 12:03 AM.
This can never work as a good anti sql... it works better if you just make a dead end on each query... that its using...Code:function cleanup($info){ $info = stripslashes($info); $info = htmlspecialchars($info); return $info;
Far better actually.
+1 internets to you, Aaron.
thajj: Works good enough, no?
Arcelor: Thanks, I always enjoy more internets :D
Well it works... but there is a diffrence between working and making it 100% hackproof, since alot of people will use this without even noticing. there's like 70 % of the people that look at this thread are going to use/test the script with out posting anything or reading, or even understand how the anti sql is made, and this will make servers weak..
So why don't you go post about it in every other register page topic? I know for a fact MOST of them have little to no security.
Well after looking over your anti-sql injection function, I have to say that it is in no way safe, striping html entities and striping slashes is not safe by any means. Also, I know for a fact you don't know PHP or any language for that matter, better than Wiz, saying he doesn't know anything only makes yourself look ignorant.
Wanna have secure registrations?
Manually add accounts or get an entire website.
iceman4154, yup I don't know anything.
Arcelor, haha yup pretty much.
no there are ways do do it.... for instance you can make a "fake" database thats infront of the real database, then let the account info get into the "fake" database and with a auto input function you can let it go and insert the account info into the real database, its unbreakable but hard to make. But thatss the way how big company's do it.
Reply With Quote