work about sql injection, Essays (university) of Database Management Systems (DBMS)

some words about sql injection in Uzbek language

Typology: Essays (university)

2018/2019

Uploaded on 05/28/2019

Jasuraga
Jasuraga 🇺🇿

1 document

1 / 10

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
SQL inyeksiya
313 – 16 guruh
Xushvaqtov Jasur
pf3
pf4
pf5
pf8
pf9
pfa

Partial preview of the text

Download work about sql injection and more Essays (university) Database Management Systems (DBMS) in PDF only on Docsity!

SQL inyeksiya

313 – 16 guruh

Xushvaqtov Jasur

Reja:

1. SQL Inyeksiya haqida

2. SQLi qarshi choralar

3. SQLi hujumlar va himoya (misollar)

Figure 5.5 Typical SQL I njection Attack

Legend:.

Internet Router Firewall

Switch

Wireless access point

Web servers

Web application server Databaseservers Database

Data exchanged between hacker and servers Two-way traffic between hacker and Web server Credit card data is retrieved from database

SQLi hujum 2 xil yo‘l bilan amalga oshiriladi

(Массовое извлечение данных)^ (Массовое извлечение данных)

1. SQLi satr ko‘rinishida: SELECT * from table where name = “$_GET[‘name’]”

SELECT * from table where user_agent = ‘$_SERVER[“HTTP_USER_AGENT”]’

1. SQLi satr ko‘rinishida: SELECT * from table where name = “$_GET[‘name’]”

SELECT * from table where user_agent = ‘ 2. SQLi raqamli ko‘rinishida: $_SERVER[“HTTP_USER_AGENT”]’

SELECT * from table where id = $_COOKIE[“id”] SELECT * from table wherer news = 123 limit $_POST[“limit”]

SQL inyeksiya orqali hujum

  • (^) <?php

// Мы никак не проверили переменную $_POST['password'], // а она может содержать совсем не то, что мы ожидали. Например:

  • (^) $_POST['username'] = 'aidan';

$_POST['password'] = “ ' OR ''=‘ “; // посылаем запрос, чтобы проверить имя и пароль пользователя

  • (^) $query = "SELECT * FROM users WHERE user='{$_POST['username']}' AND

password='{$_POST['password']}'";

  • (^) mysql_query($query);

// посмотрим, какой запрос будет отправлен в MySQL:

  • (^) echo $query;

?>

7

SQLi ga qarshi choralar

  • (^) 3 bosqichda:
    • (^) Himoyaviy so‘rov yaratish (Ручной)
    • (^) Parametrlangan so‘rov kiritish
    • (^) SQL DOM

Himoyaviy kod^ Himoyaviy kod

  • (^) Qoida asosida
  • (^) Kod analizi

Aniqlash^ Aniqlash^ • So‘rov modelining kiritilayotgan ma’lumot (SQLi) bilan mosligini tekshirish

SQLi ishlashining oldini olish

SQLi ishlashining oldini olish

Himoyalangan tizim

  • (^) <?php

$id = $_GET['id']; $id = stripslashes($id); // ekranizatsiyani – 2ta bir xil belgi birga kelishini oldini oladi $id = mysql_real_escape_string($id); // odatda belgilar oldidan \ belgisini qo‘shishda

if (is_numeric($id)){ // tipni sonlikka tekshiradi (bool)

$getid="SELECT first_name, last_name FROM users WHERE user_id = '$id'"; $result=mysql_query($getid) or die('

'. mysql_error(). '
' );

$num=mysql_num_rows($result); $i=0; while ($i < $num) { $first=mysql_result($result,$i,"first_name"); $last=mysql_result($result,$i,"last_name"); echo "

ID: $id
First name: $first
Surname: $last
"; $i++; } } ?> 10