[QUOTE=Silentfood;45610284]Don't construct a skyscraper on wooden foundation, because there will always be consequences.
- gandhi
It isn't hard to install Apache or nginx, you'll learn a lot from it too.[/QUOTE]
I mean I've installed Apache a bunch of times but for what I needed (modules, already setup config, etc) I went the lazy way, so yeah.
This is one of those threads where everyone is telling you what you're doing wrong but you just keep making excuses. If you want a secure login, take our advice.
[QUOTE=vladka24;45609779]Oh, lol. Again in the stuff folder there are experimental scripts like the chat script. It's already broke, nothing to inject or to impress.
Plus it's so broken that table doesn't even exist. Also can't comment at least on my main concern the login system how secure it is?
[/QUOTE]
Doesn't the error I posted have a username and password for your database?
[editline]7th August 2014[/editline]
[QUOTE=Bushmaster030;45610860]This is one of those threads where everyone is telling you what you're doing wrong but you just keep making excuses. If you want a secure login, take our advice.[/QUOTE]
If he wants to sell webpages
[url]https://vladstudio.biz/billing/cart.php[/url]
Then he should take the advice moreso.
[QUOTE=mdeceiver79;45617451]Doesn't the error I posted have a username and password for your database?
Then he should take the advice moreso.[/QUOTE]
[code] Using password: YES[/code] just means that a password was supplied to connect. Yes isn't his password.
[QUOTE=Th3applek1d;45620103][code] Using password: YES[/code] just means that a password was supplied to connect. Yes isn't his password.[/QUOTE]
Bah I knew it seemed too simple. I haven't used Mysql for 2 years.
[QUOTE=Bushmaster030;45610860]This is one of those threads where everyone is telling you what you're doing wrong but you just keep making excuses. If you want a secure login, take our advice.[/QUOTE]
Lol what advice? The only advice that is useful to me that I've gotten which I answered; was the one about using XAMPP.
This thread was about SQL Injecting my main control panel login area, not my other scripts.
I don't see why people are commentating about my stuff in my stuffs folder and WHMCS which is fairly secure and I don't have to worry about it.
[editline]8th August 2014[/editline]
[QUOTE=mdeceiver79;45617451]If he wants to sell webpages
[url]https://vladstudio.biz/billing/cart.php[/url]
Then he should take the advice moreso.[/QUOTE]
Lol wut, how is that even helping? You just said you haven't used MySQL for 2 years...
[QUOTE=vladka24;45629549]Lol what advice? The only advice that is useful to me that I've gotten which I answered; was the one about using XAMPP.
This thread was about SQL Injecting my main control panel login area, not my other scripts.
I don't see why people are commentating about my stuff in my stuffs folder and WHMCS which is fairly secure and I don't have to worry about it.
[editline]8th August 2014[/editline][/QUOTE]
I [I]did [/I]give you advice. mysql_ is deprecated, and PHP.net says so. Want somewhere to start? [URL="http://stackoverflow.com/questions/12859942/why-shouldnt-i-use-mysql-functions-in-php"]That is a good way.[/URL]
[QUOTE=vladka24;45629549]
Lol wut, how is that even helping? You just said you haven't used MySQL for 2 years...[/QUOTE]
I meant if you want to sell websites learn good practices. These include using PDO or at least prepared statements, then you wouldn't need to worry about injection in the first place. I use SQL everyday as part of my job, just not mysql.
If you sell someone a website using obsolete and insecure code you are selling them an inferior product which is bad for them as a client and bad for your reputation as a developer.
Dude its just constructive criticism, we're just trying to help you make your site better. Don't get hurt about it, just fix the issues.
Sorry, you need to Log In to post a reply to this thread.
