What is SQL Injection?
SQL injection is a type of security exploit in which the attacker adds Structured Query Language (SQL) code to a Web form input box to gain access to resources or make changes to data. An SQL query is a request for some action to be performed on a database. Typically, on a Web form for user authentication, when a user enters their name and password into the text boxes provided for them, those values are inserted into a SELECT query. If the values entered are found as expected, the user is allowed access; if they aren’t found, access is denied. However, most Web forms have no mechanisms in place to block input other than names and passwords. Unless such precautions are taken, an attacker can use the input boxes to send their own request to the database, which could allow them to download the entire database or interact with it in other illicit ways. (more…)
Download the file from GNUPG website. GnUPG can be used for comercial sites without a license.
You will need shell access, i.e. telnet or SSH. SSH is more secure. Also a linux machine and a copy of PGP installed on your machine. You will also need to generate a key pair, this consists of a public and private key. The public key is uploaded to the server the private key is kept on your machine. See the PGP help file for more information.
(more…)
Decryption · Email · Encryption · GNUPG · PHP
