Tag Archives: security

Masking Email Addresses in PHP

Posted on May 31, 2007 by Michael Allen Smith

Steve Waag from Lacanche Ranges was able to translate the ASP in Masking Your Email Address to PHP. <?php function maskEmail($email) { $maskedEmail = ”; for ($j = 0; $j < strlen($email); $j++) { $maskedEmail .= ‘&#’ . ord(substr($email, $j, … Continue reading

Posted in PHP | Tagged , | Comments Off

Override ReturnUrl in ASP.NET Security

Posted on May 1, 2007 by Michael Allen Smith

When using FormsAuthentication and a logged out user tries to enter a secured page that page name is appended to the ReturnUrl. After the user has been authenticated, the user is redirected to that page. I had no problem with … Continue reading

Posted in C# | Tagged , , | Comments Off

SQL Injection – Case Study

Posted on January 16, 2007 by Michael Allen Smith

Well I got nailed today. My site INeedCoffee.com which is written using Classic ASP fell victim to a SQL Injection attack. The damage was limited to just one column in a table of nine rows. Textbook SQL Injection Attack Almost … Continue reading

Posted in Classic ASP, SQL | Tagged , , | Comments Off

Restoring Civility To Your Browser (2002)

Posted on November 21, 2002 by Michael Allen Smith

This article was written in 2002, but still holds a few valuable tips. Back in 1998, surfing the Internet was less complicated. The user wasn’t constantly bombarded with pop-up advertisements. Spyware or adware barely existed. And Flash was an exciting … Continue reading

Posted in General | Tagged , | Comments Off

Masking Your Email Address

Posted on May 1, 2002 by Michael Allen Smith

This post was updated in February 2007. Some of you are probably aware of spiders. They are these little programs that surf the internet looking for data. Some spiders assist search engines in helping you find the web page you … Continue reading

Posted in Classic ASP, Javascript | Tagged , , | 2 Comments