Fighting Injection Attacks with StringBorg

Martin Bravenboer writes about a new way to fight code injection attacks. The most infamous example of this kind of attack is the SQL injection, which is caused by careless developers simply inserting a string from user input into their program, like this (PHP example): $results = mysql_query(“SELECT * FROM users WHERE ” . “useridContinue reading “Fighting Injection Attacks with StringBorg”