-2
I’m still new to programming so I don’t know what safe ways to handle a password.
1 answer
1
Intake sanitization is a safety practice not only for passwords. An attacker, will explore all forms of data entries, to know how to break your application. Even between pages or between systems, when you make an external call.
It would be interesting, you apply pre-programmed filters in your language and/or apply evaluations as regular expressions, to validate the data, within the format you expect. If the field is email, it has its own format. If the field is telephone, it has the format. Anything other than that, it can be an attack.
It takes work to validate?! It does, but a safer application has more value. Nobody likes systems that can’t be trusted.
Browser other questions tagged php security-guard passwords
You are not signed in. Login or sign up in order to post.