Quote:
Originally Posted by select94
Security .. close the holes so the hackers can not hack the tracker!
|
Well first setup a white list for your staff where by if someone happens to promote him or her self to staff and isn't in the white list they will be banned.
2)Sanitze all you $_POST and $_GET
Code:
function sanitize($data) {
$data = trim($data);
if(get_magic_quotes_gpc())
$data = stripslashes($data);
if(is_numeric($data) && preg_match('/\./', $data))
$data = floatval($data);
elseif(is_numeric($data))
$data = intval($data);
else
$data = mysql_real_escape_string($data);
return $data;
}
Usage
Code:
$username = sanitize($_POST["username");
3) If you are not comfortable with coding, then rather choose a secure source code.