this post was submitted on 24 Jan 2024
387 points (98.5% liked)

Cybersecurity - Memes

1876 readers
201 users here now

Only the hottest memes in Cybersecurity

founded 1 year ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
387
Your password must also not contain the following character combinations: script, select, insert, update, delete, drop, --, ', /*, */. (lemmy.world)
submitted 7 months ago by [email protected] to c/[email protected]
59 comments fedilink hide all child comments
 
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 17 points 7 months ago (1 children)

They might be doing it in the DB query, but they’re definitely not sanitized beforehand.

[–] [email protected] 2 points 7 months ago (1 children)

Sanitization has nothing to do with salting and hashing.

[–] [email protected] 2 points 7 months ago

If you do the salting and hashing in a database query you need to sanitize the input before you use it or you open yourself to SQL injection.

Databases have salting and hashing functions, after all