+- CodeIgniter Forums (https://forum.codeigniter.com)
+-- Forum: Archived Discussions (https://forum.codeigniter.com/forumdisplay.php?fid=20)
+--- Forum: Archived General Discussion (https://forum.codeigniter.com/forumdisplay.php?fid=21)
+--- Thread: It's just a question. (/showthread.php?tid=6111)
It's just a question. - El Forum - 02-14-2008
[eluser]Olivares[/eluser]
Hello Friends.
i'm a newbie with CI and i have a question, if i use CI my sites are safe from sql injection or cross side scripting?
im considering CI for a proyect but i don't know if i'm safe with just CI or i need extra validations.
It's just a question. - El Forum - 02-14-2008
[eluser]wiredesignz[/eluser]
All the tools to make a secure site are available in CI, of course it's up to you to use them.
It's just a question. - El Forum - 02-14-2008
[eluser]Olivares[/eluser]
thanks, for your answer. now i fell more confortable with CI.
Do you have a tip or comment to validate input user using CI tools,
Thanks again.
It's just a question. - El Forum - 02-14-2008
[eluser]wiredesignz[/eluser]
Yes.
Read the user guide:
http://ellislab.com/codeigniter/user-guide/libraries/validation.html
It's just a question. - El Forum - 02-14-2008
[eluser]Olivares[/eluser]
Thats cool, thank you very much.
It's just a question. - El Forum - 02-14-2008
[eluser]tobben[/eluser]
Also take a look at http://ellislab.com/codeigniter/user-guide/database/active_record.html
...or just take a look at the entire manual :p
It's just a question. - El Forum - 02-14-2008
[eluser]ejangi[/eluser]
Yeah, CI is pretty good in terms of security, but it doesn't take long for an un-educated developer to poke holes in it. You still need to be responsible for making your own code as secure as possible.
It's just a question. - El Forum - 02-14-2008
[eluser]tobben[/eluser]
I think the right attitude/behaviour for any web programmer is to have some sort of paranoid personality disorder.
It's just a question. - El Forum - 02-14-2008
[eluser]ejangi[/eluser]
Hehehe... Pretty much!
