Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Using CodeIgniter Choosing CodeIgniter disable security feature
disable security feature
  • Offline alireza1970
    Newbie
  • *
  • Posts: 1
    Threads: 1
    Joined: Dec 2016
    Reputation: 0
#1
12-10-2016, 12:23 PM

Hi friends
i want to create a vulnerable web application such as webgoat for teaching web vulnerability to our students in the university
i choose codeigniter for backend . as i see codeigniter comes with build in security features such as preventio sql injection and xss and other common web vulnerability.

is it possible disable build in security features  (sql injection , xss , lfi ,..)?

thanks
Reply
  • Offline Narf
    Me
  • *******
  • Posts: 1,589
    Threads: 1
    Joined: Oct 2014
    Reputation: 121
#2
12-10-2016, 01:32 PM

No.
Reply
  • Offline albertleao
    Senior Member
  • ****
  • Posts: 484
    Threads: 18
    Joined: Oct 2014
    Reputation: 22
#3
12-12-2016, 02:09 PM

If you really want to, you can write some insecure php code. Doesn't matter what framework you use, you can always write bad/insecure code.
Codeigniter is simply one of the tools you need to learn to be a successful developer. Always add more tools to your coding arsenal!
Reply
  • Offline skunkbad
    Senior Citizen
  • *****
  • Posts: 1,300
    Threads: 63
    Joined: Oct 2014
    Reputation: 86
#4
12-12-2016, 03:46 PM

I think if you're qualified to teach about web/server/php security, you should have no problem demonstrating the issues that CI solves.
Expert Website Development - Temecula, CA
Community Auth For CodeIgniter 3
Reply




Theme © iAndrew 2016 - Forum software by © MyBB