RE: [Phpgedview-talk] logfile error message
Brought to you by:
canajun2eh,
yalnifj
Menu
▾
▴
RE: [Phpgedview-talk] logfile error message
|
From: John F. <Joh...@by...> - 2004-12-20 19:24:33
|
Hi Stuart, =20 This error means that somebody was trying to send a message and the message they entered looked similar to an SQL command so the message was not allowed. This is a security check to make sure that SQL Injections are not able to get through. However the check is pretty liberal and as you can see it sometimes messes up. I have tightened up this check if version 3.2.1 so it shouldn't happen as often as it did in 3.1. =20 --John =20 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D John Finlay PhpGedView Project Manager www.phpgedview.net <http://www.phpgedview.net/>=20 ya...@us... =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D =20 =20 ________________________________ From: php...@li... [mailto:php...@li...] On Behalf Of stuart Sent: Sunday, December 19, 2004 4:21 AM To: php...@li... Subject: [Phpgedview-talk] logfile error message =20 Hi there, =20 =20 Was just checking through my phpGedView log file (not something I do very often!) and notice this error message (real names removed): =20 " 17.12.2004 23:52:29 - 68.154.64.65 - Possible SQL injection detected: body=3D>My husband Derrick typed his name in a search engine on-line and found our family tree. My mom is **** ****, now ****, Jack\'s daughter. I\'m curious to know how long it has taken you to create this. I\'m very impressed! I also have some updates that you might want to add. I look forward to hearing from you. . Script terminated. " =20 Now, I'm assuming that there was some sort of error in the saving/sending of this message since I never actually recieved this message. I have tried to reproduce conditions under which it may have occurred but I always manage to send the message OK. =20 phpGedView is V3.1 - I'm just about to apgrade when I get a chance. =20 Any ideas? =20 =20 Best wishes, =20 =20 Stuart =20 __________________________________ Stuart Phethean Hampshire, UK Family web Pages: http://www.phethean.co.uk <http://www.phethean.co.uk/>=20 _____________________________________ =20 =20 -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.296 / Virus Database: 265.6.0 - Release Date: 17/12/2004 |
