+ 1
Security of Website
Hi everybody ! I just know the starting of PHP SoloLearn and (HTML and Python with other site). I want to work, just in amator in the security of website, find the errors ... I search a lot of things in Internet, but they don't answer at my question : Where can I start to learn something about the Security (Website) ? Yes, I know, learn PHP is already good, a lot of people say that. But I want to know really the errors, how exploit them, how protect them. Do you know a website to learn that ? Thanks !
5 odpowiedzi
+ 4
My suggestion:At First learn software testing in a particular Programming,then learn it on another Program.
➿. ➿. ➿.
In brief: You have vast knowledge on various web programme,Computer Operating System (windows,Mac,Linux), Different web browsers,
Networking System or data transfer protocol,web data delivery system,emailing procedure details.
It's a vast area of working,huge experience is required.
➖➖ ➖➖
Website security requires vigilance in all aspects of website design and usage. This introductory article won't make you a website security guru, but it will help you understand where threats come from, and what you can do to harden your web application against the most common attacks.
✴️✴️Prerequisites:Basic computer literacy.Objective:To understand the most common threats to web application security and what you can do to reduce the risk of your site being hacked.
🔽🔽🔽🔽🔽
[This is the latest article(published this week)]
🔼🔼🔼🔼🔼
For details:⏬⏬⏬
https://developer.mozilla.org/en-US/docs/Learn/Server-side/First_steps/Website_security
+ 2
are you french?
+ 2
PHP is good and safe but it depends how you use it.
One of the problems is badly or wrongly made sql queries which leads to sql injections.
Here's very basic and common mysql query used in login forms.
"SELECT * FROM users WHERE name='$name' AND password='$password'"
If user types this in form inputs:
' OR '0'='0
All your users informations has just been stolen because your query now looks like this.
"SELECT * FROM users WHERE name='' OR '0'='0' AND password='' OR '0'='0'"
0=0 is always true.
About PHP security.
In new PHP version the MySQL extension is deprecated so you must use MySQLi or PDO. If you think that injection could be possible use prepared statements. you can get warnings when using MySQL in newer PHP versions.
+ 1
Please, can you speak with easy words, I don't know very well the English ...
+ 1
Thank you !! Yes I.m french