避免在ASP.NET网站中被黑客入侵 [英] Avoid hacking in asp.net websites
本文介绍了避免在ASP.NET网站中被黑客入侵的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!
问题描述
为了避免被黑客入侵,我们必须在密码字段中避免使用哪些字符?
为了防止通过sql注入进行黑客攻击,我避免在密码"字段中使用和".即,如果我们在密码"字段中输入和",则会显示一条错误消息.
请帮我任何想法.....
谢谢.....
Hi,
What are the characters we have to avoid in the password field to avoid hacking?
To prevent hacking through sql injection, I avoided '' and " in the password field. ie, if we enter '' and " in the password field, it will show an error message.
Please help me with any ideas.....
Thank you.....
推荐答案
防止黑客入侵是一个广泛的话题.
但是,为防止应用程序" SQL注入",请使用存储过程/参数化查询.
有关更多信息,请参见以下链接.
http://msdn.microsoft.com/en-us/library/ff648339.aspx
http://msdn.microsoft.com/en-us/library/ff647397.aspx
Prevention from Hacking is a wide topic.
However to prevent you Application from "SQL Injection" either use Stored Procedures / Parametrized Queries.
For more information on have a look at below links.
http://msdn.microsoft.com/en-us/library/ff648339.aspx
http://msdn.microsoft.com/en-us/library/ff647397.aspx
检查此链接,可以看到如何避免sql注入
http://msdn.microsoft.com/en-us/library/ff648339.aspx
所有最佳
Hi,
check this link you can see how to avoid sql injections
http://msdn.microsoft.com/en-us/library/ff648339.aspx
All the Best
Insert into ITCircular(title,type,url1,url2) values('" + txttitle.Text + "','" + txttype.Text + "','" + path + "','" + path1 + "')
如上所述编写查询是不安全的方法.应使用参数化查询.
避免网站被黑客入侵,
您可以使用加密/解密技术.
It is unsafe method to write query as above.We should use parametrized query.
to avoid website hacking ,
you can use encryption/Decryption techniques.
这篇关于避免在ASP.NET网站中被黑客入侵的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
查看全文
