security

Why and How for SSLs and your website mglaman Mon, 10/16/2017 - 04:00
Secure sites. HTTPS and SSL. A topic more and more site owners and maintainers are having to work with. For some, this is a great thing and others it is either nerve-wracking or confusing. Luckily, for us all, getting an SSL and implementing full site HTTPS is becoming easier.
Drupal 7.32 and why you need to upgrade, how to fix it. mglaman Thu, 10/16/2014 - 09:49
This is a bit late on the #drupalgeddon // #drupslsa05 post, but the need to update is just too alarming to go unmentioned. Like this tweet from @outlandishjosh
Secure and Harden WordPress mglaman Thu, 11/29/2012 - 07:26
WordPress is a great piece of software supported by a large open source community. It is quick to deploy, easy to configure, and easy to use. When it comes to simple content management, WordPress is the way to go. However, some of us have had the unfortunate event of getting our WordPress site hacked or defaced.
Sanitize Text for SQL mglaman Sat, 11/26/2011 - 10:19
Cross Site Scripting (XSS) and SQL Injections are some of the biggest security threats to a PHP application.  Every developer has different ways of preventing SQL Injections or malicious JavaScript from being inserted into the database. Here are some easy solutions to help safeguard your PHP applications.

mysql_real_escape_string()

mysql_real_escape_string() should always be used on data being placed into your SQL database.