Menu
I guess I am looking for a link.
I wrote a PHP site (why not Perl?) that has a MySQL user DB and an option for the staff to mass mail the list.
Someone pointed out that my site is not secure;
– someone can mass-add emails to the DB with a simple script
– um… he wasn’t satisfied with the mass mailing page. I had it get a password before mailing, but… whatever.
Where can I read up on security?
I suppose some features I can add is checking the referer before allowing anything and limiting stuff like max 1 email addition per minute or whatever…
Any good sites/manuals out there?