php Programming Glossary: insecure

PHP 5.4 PDO could not connect to MySQL 4.1+ using the old insecure authentication

http://stackoverflow.com/questions/10420831/php-5-4-pdo-could-not-connect-to-mysql-4-1-using-the-old-insecure-authenticatio

5.4 PDO could not connect to MySQL 4.1 using the old insecure authentication I know there are a tonne of similar questions.. 2000 mysqlnd cannot connect to MySQL 4.1 using the old insecure authentication. Please use an administration tool to reset your..

PHP: How do Cookies and Sessions work?

http://stackoverflow.com/questions/11142882/php-how-do-cookies-and-sessions-work

expire in about 9 years. Cookies are considered highly insecure because the user can easily manipulate their content. That's.. still be stolen if the user let's say logged in over an insecure WiFi. An attacker can sniff the cookies and set it as its own..

Secure random number generation in PHP

http://stackoverflow.com/questions/1182584/secure-random-number-generation-in-php

not a license or excuse to accept making even more of it insecure. Here is some PHP code to obtain a secure random 128 bit string..

Preventing session hijacking

http://stackoverflow.com/questions/12233406/preventing-session-hijacking

case of XSS vulnerabilities and to forbid transmission via insecure channel see session.cookie_httponly and session.cookie_secure..

What do the ENT_HTML5, ENT_HTML401, … modifiers on html_entity_decode do?

http://stackoverflow.com/questions/13745353/what-do-the-ent-html5-ent-html401-modifiers-on-html-entity-decode-do

value php echo htmlspecialchars str ENT_HTML5 This is insecure . It will override the default value ENT_HTML401 ENT_COMPAT..

Is setting the uploads folder 777 permision secure?

http://stackoverflow.com/questions/1577514/is-setting-the-uploads-folder-777-permision-secure

share improve this question In general 777 is about as insecure as it gets... that means anybody can read and write to your..

how to implement php login or authentication session

http://stackoverflow.com/questions/1590103/how-to-implement-php-login-or-authentication-session

at php login tutorials but they all seem relatively insecure. I would prefer to use a php authentication api or framework...

Call php from javascript and return an array from php to Javascript function

http://stackoverflow.com/questions/1594411/call-php-from-javascript-and-return-an-array-from-php-to-javascript-function

file ' val 'json' This should be your PHP although very insecure php dir _REQUEST 'dir' filesArray array Counter 0 files scandir..

Mcrypt js encryption value is different than that produced by PHP mcrypt / Mcrypt JS decrypt doesn't work for UTF-8 chars

http://stackoverflow.com/questions/18786025/mcrypt-js-encryption-value-is-different-than-that-produced-by-php-mcrypt-mcryp

make it so that you cannot decrypt the output. ECB mode is insecure and you really shouldn't use it. CBC is the way to go. CBC does..

What is the best way to password protect folder/page using php without a db or username

http://stackoverflow.com/questions/286938/what-is-the-best-way-to-password-protect-folder-page-using-php-without-a-db-or-u

Heggie suggested except without cookies. It does seem insecure as hell but it is probably better having a bad password protection..

Simple PHP login with cookie

http://stackoverflow.com/questions/4329806/simple-php-login-with-cookie

authenticated in a client side cookie that's incredibly insecure. A user can modify anything in a cookie so in this case I could..

How can I determine a file's true extension/type programatically?

http://stackoverflow.com/questions/481743/how-can-i-determine-a-files-true-extension-type-programatically

then I guess it was a bad image. This should be considered insecure because I am loading arbitrary user supplied binary data into..

CodeIgniter - why use xss_clean

http://stackoverflow.com/questions/5337143/codeigniter-why-use-xss-clean

all data on input is a bad practice . Not only is it insecure but it also corrupts data which can make comparisons difficult...

What encryption algorithm is best for encrypting cookies?

http://stackoverflow.com/questions/606179/what-encryption-algorithm-is-best-for-encrypting-cookies

with cletus that storing any information in a cookie is insecure. However we have a requirement to implement a 'remeber me' feature...

kill users processes in linux with php

http://stackoverflow.com/questions/6308774/kill-users-processes-in-linux-with-php

users in a redhat machine. I know it is possible and very insecure to give apache the ability to do things as root but I need to..

Designing a secure auto login cookie system in PHP

http://stackoverflow.com/questions/7591728/designing-a-secure-auto-login-cookie-system-in-php

doesn't go through for some reason but I think this is insecure. You may also want to store the timestamp of the token and only..

PHP Pass variable to next page

http://stackoverflow.com/questions/871858/php-pass-variable-to-next-page

to post if you want to do it via post. Both are equally insecure although GET is easier to hack. The fact that each new request..

How to protect my source code when deployed?

http://stackoverflow.com/questions/9826672/how-to-protect-my-source-code-when-deployed

• initialise
• initialization
• initialize
• initialized
• initializing
• initially
• initiate
• initiated
• initiates
• initwithdata
• ini_arr
• ini_get
• ini_set
• inject
• injected
• injecting
• injection
• injections
• inkscape
• inline
• inner
• innerdom
• innerhtml
• innerjoin
• inner_html
• innodb
• inp
• input#
• input
• input2
• inputblur
• inputfilename
• inputfiletype
• inputfocus
• inputs
• inputstream
• inputstreamreader
• inputted
• inputtext
• ins
• insecure
• insensitive
• insert
• insert.php
• insertbefore
• inserted
• insertimagequestion
• inserting
• insertion
• inserts
• insert_id
• inset
• inside
• insight
• insights
• insist
• inspect
• inspecting
• inspiration
• inspired
• inst
• install
• installation
• installations
• installed
• installer
• installing
• installs
• instance
• instanceof