News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Greebo.net:
Converting your PHP app to MySQLi prepared statements
January 04, 2010 @ 13:46:13

From Greebo.net there's a recent post that looks at converting the current database functionality in your application over to the MySQLi functionality and making use of prepared statements as a later of protection for your queries.

Okay, you've got like a zillion SQL queries in your PHP app, and probably 95% of them have a WHERE clause, and you need to make them safe so people will still download and use your app. Because if you don't fix your injection issues, I will rain fire on your ass. These are the steps you need to take to convert to prepared statements.

The guide is two steps you'll need to make the transition - "PHP 4 is dead. Upgrade to PHP 5" and "make sure your hoster has MySQLi". The major part of the update is under the first point where he gives code examples and suggestions to follow about how to "harden" your environment to prevent and issues that lax SQL methods might have caused and a simple example of a move from MySQL to MySQLi.

0 comments voice your opinion now!
mysql mysqli convert prepared statements tutorial


blog comments powered by Disqus

Similar Posts

Padraic Brady's Blog: Zend Framework Blog Tutorial - Part 6: Zend_Form & Zend_Auth

Ulf Wendel's Blog: PHP mysqli quickstart is online!

Zend Developer Zone: Creating Code Coverage Statistics with xdebug

PHPit.net: An Introduction to the Winbinder Library (Part 1)

Zend Developer Zone: Search Engine Friendly Websites with the Zend Framework


Community Events





Don't see your event here?
Let us know!


composer release language version symfony community framework introduction api configure conference opinion threedevsandamaybe list series laravel podcast unittest voicesoftheelephpant interview

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework