What?
I'm putting this article here so that I can run through a checklist when I am adding an input field to an interface.

Why?
There is a strange complacency in many applications released for public use which are vulnerable to SQL Injection. According to industry reports over 60% of attacks on websites is through SQL-Injection alone.

How?
SQL-Injection is not as complicated as it is made out. An input field in a website form is where the hacker can add code that is submitted to the website and processed by the hosting server. Take a search engine for instance, this is a field which the end-user can freely enter any text they want, especially any code. The Google Search Engine has undergone a lot of work to prevent people from injecting code into their search function. But a search engine is just one example, on your website, you need to test EVERY input field the end-user can access. For an introduction on SQL-Injection, please read my article "Anti-SQL Injection Basics".

Tips

What?
A quick note on a htaccess rewrite rule I'm liking.

What does it do?
What I type:

  1.  http://www.mywebsite.com/blog/videos.html 
Sends this to server:
  1.  http://www.mywebsite.com/index.php?myFolder=blog&myFiles=videos 
How?

What?
A quick article on how to create a middleware script which accepts the values from a submitted HTML form and sends it to a server on another domain for processing. This applies to Linux Apache MySQL and PHP (LAMP) setups.

Why?
A customer wanted to connect their Mobile App to a third-party API. The third-party only accepts requests from a static and permitted IP address. If the end-user were to make the request, then their own IP address would be the one checked against, and it just wouldn't be manageable to add every new user's IP address to their service. The request has to come from a permitted server with a single IP address.

How?
It's likely that you already know how to submit a HTML form to a server via your Mobile application so the following will only document the process of sending data under the server IP address. We're going to use a PHP script with the cURL function to receive and send the data. cURL is a standard feature on most LAMP setups. If not you can install it from here: http://curl.haxx.se/download.html

What?
There are a lot of articles & posts out there that cover the same topic, but as this took me the good part of an hour just to find out, I'm posting it here so I never have to look for it again.

A client changed their website domain address and wanted any person visiting the old domain to be redirected to the new domain.

Why?
I warned that a 301 site gets removed from the Google directory and true to form Google have removed it. Not sure why nobody believed me when I raised the alarm but hey-ho.

How?
I'm going to show you how to do this with a .htaccess file: