Questions tagged as 'seguridad'

Tagged questions
3
answers

What is SQL injection and how can I avoid it?

I have found many questions in StackOverflow about web programs or forms that store information in a database (especially in PHP and MySQL) and that contain serious security problems related mainly to the SQL injection . Normally I leave a c...
asked by 20.05.2016 / 06:13
3
answers

Website hacking with a script that references another site

Recently my site was hacked, the attackers managed to upload a webshell to the site, however everything was controlled and the site is safe again. Now eset nod32 I detected a trojan fakejquery , investigating a bit I could see that in t...
asked by 17.10.2016 / 23:59
4
answers

Apache with Xampp does not start through blocked ports

Log detail: 13:41:13 [main] Initializing Control Panel 13:41:13 [main] Windows Version: Pro 64-bit 13:41:13 [main] XAMPP Version: 7.0.8 13:41:13 [main] Control Panel Version: 3.2.2 [ Compiled: Nov 12th 2015 ] 13:41:13 [ma...
asked by 05.08.2016 / 13:58
1
answer

Protect files with sensitive data in PHP

In PHP we can use files to store sensitive data, but those files must have certain levels of protection. We are going to take the example of a file that stores our login credentials to the database. To save this important information I hav...
asked by 07.11.2017 / 00:46
2
answers

See html source code, security

I have in my code html this instruction: style="display:none; The problem is that from the inspection of source code you can modify it and thus be able to see the div in which the instruction is found. Is there any...
asked by 16.10.2018 / 19:31
2
answers

Set up a linux script to run with the permissions of another user

My specific need is the following: A script of usuario1 has to be able to be executed by any user of group1 (that I know how to do), but when it is executed it has to have the permissions of user1. It would be something equivalent t...
asked by 04.08.2017 / 14:05
1
answer

can session_start () be used in constructors of various classes?

I have a big doubt about security, I'm using session_start() as follows: public function validar() { session_start(); if(@$_POST) { foreach($_POST as $campo => $valor) { $asig = "$" . $campo . "='" . html...
asked by 11.08.2016 / 15:42
3
answers

SSL Certificate for websites

I received an email from Google telling me that the non-HTTPS websites will be penalized:    Unsafe pages that collect passwords will generate warnings in Chrome 56 for xxxxx.es       To: owner of xxxxxx.es       As of January 2017 Chrome (...
asked by 24.01.2017 / 17:20
0
answers

Stop DDoS attack with Apache + Fail2ban

I write because I have a problem that I am not able to solve ... I have a server which receives denial of service attacks from different IPs at times. The vast majority of these attacks I have stopped using Apache + Fail2ban, denying iptables...
asked by 25.02.2016 / 22:16
0
answers

WSO2 IS + kerberos external kdc

I am doing a project with WSO2 and I would like to integrate ticket authentication of kerberos by outsourcing this. Is there any way? I know that the identity server of WSO2 includes a server of kerberos , but as I say...
asked by 09.03.2016 / 12:23