security

How does the SQL injection from the “Bobby Tables” XKCD comic work?

by

Just looking at: (Source: https://xkcd.com/327/) What does this SQL do: Robert’); DROP TABLE STUDENTS; — I know both ‘ and — are for comments, but doesn’t the word DROP get commented as well since it is part of the same line? 1 13 It drops the students table. The original code in the school’s program … Read more

How should I ethically approach user password storage for later plaintext retrieval?

by

Locked. This question and its answers are locked because the question is off-topic but has historical significance. It is not currently accepting new answers or interactions. As I continue to build more and more websites and web applications I am often asked to store user’s passwords in a way that they can be retrieved if/when … Read more