Tutorial is it safe to add SQL info in vb?

ViolentReality · 08-06-2013, 01:21 PM

If you're making a Login System then you're going to wanna use a gateway such as PHP.

So it goes

VB.NET Application > PHP > MySQL Database

Platinum · 08-06-2013, 03:15 PM

You could also write the sensitive information using Chr(), it will take someone a long time to check that out ... Just a thought.

Blackbone · 08-07-2013, 09:39 AM

thanks guys for the replies, well im using a php login system lol, but can you they know the URL of the login page?

nikey646 · 08-07-2013, 10:04 AM

(08-07-2013, 09:39 AM)Blackbone Wrote: thanks guys for the replies, well im using a php login system lol, but can you they know the URL of the login page?

Essentially, yes they can, however because php is executed on the server, unless they have access to your server (as in, can edit the login.php) the best they can do is...well nothing unless you make it a functioning site/application combo.

Php is roughly executed in this manor just so you know

User goes to example.com, example.com/index.php is requested by the user, the server (Apache, nginx, Light HTTP, etc) parses code within <?php ?> and shows the output buffer from php (echo, print, printf, etc) to the user.

Shebang · 08-09-2013, 08:14 PM

(08-07-2013, 09:39 AM)Blackbone Wrote: thanks guys for the replies, well im using a php login system lol, but can you they know the URL of the login page?

If you're not properly hiding the request, it will be easy to fake a good response that would allow the user to log in. Look in to Aeonhack's .NET Seal source, he manages to hide requests from HTTP monitors such as Fiddler or Charles using different protocol.

ViolentReality · 08-09-2013, 08:27 PM

Use a gateway such as PHP.

Code:
VB.NET > PHP > MySQL Database