摘要
SQL注入攻击是一种很容易实现的入侵方式,攻击者通过检测网页地址的注入入口,构造SQL语句,非法获取网站资源.本文介绍了SQL注入形成的原因、检测方法,防止SQL注入的几种常见的措施,结合实际给出了一个SQL通用防注入的程序.
SQL injection attack is very easy to implement intrusion detection, an attacker through the webpage address into the entrance, constructs a SQL statement, illegal access to the web resources. The reasons of the formation of SQL injection, SQL injection methods and the several common measures on preventing SQL injection are introduced, and a general SQL prevent implantation procedure is given.
出处
《湖南理工学院学报(自然科学版)》
CAS
2012年第4期62-65,89,共5页
Journal of Hunan Institute of Science and Technology(Natural Sciences)