To avoid the cross side scripting or make site safe from hacker attacks one need to perform data validation before allowed data insertion into database . We can achieve this using php preg_match which check data format to see whether it is in valid state or not. The following code snippet is standard validation example
function isHackerSafeUsername($Subject)
{
if( preg_match(”/^[a-zA-Z][\w\._]*[a-zA-Z0-9]$/”,$Subject)) return true;
else return false;
}
function isHackerSafePassword($Subject)
{
if( preg_match(”/[^a-zA-Z0-9@._'-]/”,$Subject)) return false;
else return true;
}
function isHackerSafeName($Subject)
{
if( preg_match(”/^[a-zA-Z]{1,}$/”,$Subject)) return true;
else return false;
}
function isHackerSafeEmail($Subject)
{
if( preg_match(”/^[a-zA-Z][\w\.-]*[a-zA-Z0-9]@[a-zA-Z0-9][\w\.-]*
[a-zA-Z0-9]\.[a-zA-Z][a-zA-Z\.]*[a-zA-Z]/”,$Subject)) return true;
else return false;
}
function isHackerSafeLan($Subject)
{
if( preg_match(”/^[a-zA-Z]{1}$/”,$Subject)) return true;
else return false;
}
function isHackerSafeNumber($Subject)
{
if( preg_match(”/^[0-9]{1,15}$/”,$Subject)) return true;
else return false;
}
function isHackerSafeAddress($Subject)
{
if( preg_match(”/^[a-zA-Z0-9\s,]{1,}$/”,$Subject)) return true;
else return false;
}
function isHackerSafeTitle($Subject)
{
if( preg_match(”/^[a-zA-Z0-9\s,]{1,}$/”,$Subject)) return true;
else return false;
}
function isHackerSafeCityState($Subject)
{
if( preg_match(”/^[a-zA-Z\s]{1,}$/”,$Subject)) return true;
else return false;
}
function isHackerSafeAnswer($Subject)
{
if( preg_match(”/^[a-zA-Z0-9\s]{1,}$/”,$Subject)) return true;
else return false;
}
function isHackerSafeQuestion($Subject)
{
if( preg_match(”/^[a-zA-Z]{1,}$/”,$Subject)) return true;
else return false;
}
?>
Filed under: Php | Tagged: php hack, preg match, regular expression, validation
BCA BCS Diploma Computer & IT Classes at chembur
C,C++,Java Classes at chembur
BCS / BCA/Engg Classes at chembur
PHP / MYSQL Classes at chembur mumbai