.....and all hackers ALWAYS use the same IP....cause they'd never get caught that way...hehe
yes...that was meant to be sarcastic ;-) I see where you're coming from Claude, I just think (as Dave appears to) that you're wasting your time....let CFQUERYPARAM do what it's meant to. Cheers - Bryan Stevenson B.Comm. VP & Director of E-Commerce Development Electric Edge Systems Group Inc. phone: 250.480.0642 fax: 250.480.1264 cell: 250.920.8830 e-mail: [EMAIL PROTECTED] web: www.electricedgesystems.com Notice: This message, including any attachments, is confidential and may contain information that is privileged or exempt from disclosure. It is intended only for the person to whom it is addressed unless expressly authorized otherwise by the sender. If you are not an authorized recipient, please notify the sender immediately and permanently destroy all copies of this message and attachments. On Mon, 2008-07-21 at 15:39 -0400, Claude Schneegans wrote: > >>That's fine, until the attack pattern contains something else, like > Unicode > sequences. > > Not from the same address though, because it is banned now. > And the purpose of my code is not to replace CFQUERYPARAM. > It is to add an extra feature that will not only protect the database, > but ALSO > the whole site, because the guy won't be able to open any other page. > > >>Figuring out what patterns to deny is a losing battle. > > Look at what <CFQUERYPARAM CFSQLType = "CF_SQL_INTEGER "... does: > It triggers an error if the parameter is not an integer. > My code does exactly the same thing, PLUS it bans the intruder in case > some known attack pattern is detected. > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;203748912;27390454;j Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:309383 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
