|
-
October 28th, 2008, 06:25 AM
#1
MD5 Securing SQL Injections
So I was perusing google looking for PHP/MySQL anti-SQL injection scripts/tutorials and I came across a script where the author showed a script that would be "insanely secure" one of the things that he did was MD5 the uname and pword. That was all he did as far as filtering for user input.
The first comment, which sparked a large discussion, was that it was open to SQL injections. There was a lot of arguing as to whether or not it was free from SQL injections, but no one ever really concreted their case. Since no one would test it.
I haven't had a chance to set up anything to test this, but does anyone know from experience whether or not using the MD5 PHP function can stop a SQL injection? I am aware that MD5 is deprecated and not as secure as it once was, I have been able to google a few hashes myself and get the actual plain text, but I am still wondering if it would stop SQL injections.
Thanks,
Slart
Similar Threads
-
By mikester2 in forum Other Tutorials Forum
Replies: 5
Last Post: January 31st, 2005, 01:16 PM
-
By ch4r in forum Other Tutorials Forum
Replies: 5
Last Post: January 18th, 2005, 08:20 AM
-
By spools.exe in forum Microsoft Security Discussions
Replies: 0
Last Post: September 15th, 2003, 09:47 PM
-
By CXGJarrod in forum Microsoft Security Discussions
Replies: 0
Last Post: July 23rd, 2003, 10:00 PM
-
By s0nIc in forum AntiVirus Discussions
Replies: 2
Last Post: January 27th, 2003, 12:23 PM
Tags for this Thread
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote