HackingTruths Blog

Hello friends, I am making a chat application but I am in a dilemma. Normally in a chat, people can speak of anything using just about any character in the keyboard or any word including words like DELETE * FROM —— etc etc opening way for SQL Injection.
So I was thinking that a good idea is to encode everything that I am getting from user and only then put it in my database and decode it into normal words while I am taking it out. Maybe say using ASCII encoding itself. Like DELETE can be encoded into 686976698469. This way everything that goes into the database is safe.
But I was thinking that if the solution to SQL Injection attacks is so simple then why is it often discussed as a major problem. Am I missing a point here. Please reply

well,this is the problem ,using Fedora core 6 sometimes i need to mount one of my windows partition so that i can copy some files there and access them under windows(i have win and linux both on one harddrive),i mount that partition using su
command but when i try to copy files to newly created folder in (/mnt/win for example) it say that you can’t write on this partition,is there a way i can run a file browser program like Konqueror with root credentials so that i can copy my files
in a graphical environment,in the past that i used another distro (or maybe other version of fedora)that i can’t remember it’s name i could right click on the Konqueror icon and there was an option for running as other users but it seems that there is no such thing in current distro …
many thanks in advance

I would like an antivirus software program that is the newest and has the best protection, if possible.

both my accounts got hacked, I’m afraid it was someone I made an ebay/paypal transaction with. I did send him a letter from my e-mail address..he said he didn’t get it and I forwarded it again from my sent box..he knows my address..anyway he could have been the one to do it?

My parents did this to me a while back, and I’m still confused on how they gained access?

After watching videos on the internet (YouTube) on opening locks using a piece of a pop can, and sliding it into the shackle. I decided to try it myself. It looked so easy in the video, but I was unable to get the lock open even when I am precise at doing things. Are these real methods or are they like sort of set up? Other than picking or bumping, do you know a way of hacking locks, I need one of my combination lock opened?

Never had a problem when using conventional broadband and the game,Links 2003,is in the list of exceptions in firewall.

well best idea is to check the manual or even better get in contact with vodafone to see why it doesnt connect, since u need to be on the correct package to use the 3g service.

I dont really understand how it works and how much the plan is goign to come up as. Im planning on getting the new iphone thats coming out in july, single plan but i want unlimited texting. That adds 20$ but does that include using the internet? I mean it is the iphone. Youtube,, facebook,,, etc,,, is it only free with wifi or would that nclude the 3g networking as well?

Hello,
My website has a simple php comment feature, that allows the user to enter comments on videos, which are then added to a database. To protect against SQL injection, I’ve used the standard ysql_real_escape_string and stripslashes methods. However, this means that whenever a use enters a comment with ‘ or “, etc, the comment is not entered.
How can I protect against SQL injection, but still allow my users to comment with normal punctuation?
Thanks
Legs