Answer the question
In order to leave comments, you need to log in
Where to look for the consequences of an attack on the site?
A couple of days ago my website was hacked. I received about 1000 applications. The contents of the fields are approximately the following: /, -1 OR ', etc.
Well, now I understand that it is necessary to "tighten" the validation of the fields, the captcha will not be superfluous either.
Where to look for consequences after the attack? What other measures should be taken?
Answer the question
In order to leave comments, you need to log in
By this you were pierced by the possibility of SQL injection. You must use prepared statements exclusively . Tightening validation may not help if you have a hole in sql.
Stick PHPIDS , there are rules for spam. And for everything else, in principle, too.
Consequences - it is not clear what is meant? Have you been hacked? Not sure? Run ai-bolit , see what it shows.
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question