摘要
Web页面中的SQL注入攻击是当前黑客最常用的攻击方法,现阐述了SQL注入攻击的定义,根据目前黑客对SQL注入攻击的现状,分析了注入式攻击和SQL注入的原理,对SQL注入攻击的完整过程作了全面剖析,然后针对大多数网站都存在着SQL注入漏洞等过滤和约束不严的问题,从网站管理员和Web应用开发者两个方面给出了防御SQL注入攻击的有效措施。
SQL injection attack in the Web page is the most common hacker attack method. This paperelaborates the definition of SQL injection attack, according to the current hackers to SQL injection attack, analyzes the injection attack and the principle of SQL injection attack, makes a comprehensive analysis of the complete process of SQL injection attack. Then, for most Web sites, a SQL injectionvulnerability exists, such as filters and constraints are inadequate problem, from both web masters and Web application developers of effective measures to protect against SQL injection attacks is given out.
出处
《信息技术》
2014年第8期187-189,194,共4页
Information Technology
