<div>
Usually iptables has to use snort or something like that to detect signatures.<br />
<br />
to prevent SQL injection, your code is a far better mechanism to address that.<br />
<br />
i.e. make sure you are not passing form data directly to the sql server.<br />
<br />
Check if there are articles on this issue at EE.
</div>


Usually iptables has to use snort or something like that to detect signatures.

to prevent SQL injection, your code is a far better mechanism to address that.

i.e. make sure you are not passing form data directly to the sql server.

Check if there are articles on this issue at EE.

networker 

ldvhai

SQL protection using iptables. See pg 10.

2-ICMSC2011S008.pdf

<div>
The above deals with aURL encoded (GET request)<br />
A post request could still go through.<br />
<br />
Best to safeguard your system, is to make sure the code in use is not suseptible to SQL injection.
</div>


The above deals with aURL encoded (GET request)
A post request could still go through.

Best to safeguard your system, is to make sure the code in use is not suseptible to SQL injection.

<div>
agree secure coding and OWASP has good reference on it. Build different layer of defence starting from the code level into the web appl, and to the host OS (host defence like iptables), into web server (with WAF like mod sec) and at the network perimeter facing external network with WAF as it is app aware type of FW - not only SQLi but also others mentioned in OWASP like XSS etc.
</div>


agree secure coding and OWASP has good reference on it. Build different layer of defence starting from the code level into the web appl, and to the host OS (host defence like iptables), into web server (with WAF like mod sec) and at the network perimeter facing external network with WAF as it is app aware type of FW - not only SQLi but also others mentioned in OWASP like XSS etc.

<div>
Thank you for the instructions above, i'm really appreciate it.<br />
<br />
Sincerely.
</div>


Thank you for the instructions above, i'm really appreciate it.

Sincerely.

<div>
<div class="content wysiwyg-content">
Hi Experts.<br />
<br />
I'm setting up iptables for a system so I want to ask if there is any rule/module that can prevent SQL Injection on iptables.<br />
<br />
Thanks for reading this.
</div>
</div>


Hi Experts.

I'm setting up iptables for a system so I want to ask if there is any rule/module that can prevent SQL Injection on iptables.

Thanks for reading this.

Prevent SQL Injection with iptables

Operating systems perform basic tasks, such as recognizing input from the keyboard, sending output to the display screen, keeping track of files and directories on the disk, and controlling peripheral devices such as disk drives and printers. For large systems, the operating system makes sure that different programs and users running at the same time do not interfere with each other. The operating system is also responsible for security, ensuring that unauthorized users do not access the system. Operating systems provide a software platform on top of which other programs, called application programs, can run.

Operating Systems

A vulnerability is a weakness which allows an attacker to reduce a system's information assurance. Vulnerability is the intersection of three elements: a system susceptibility or flaw, attacker access to the flaw, and attacker capability to exploit the flaw. To exploit a vulnerability, an attacker must have at least one applicable tool or technique that can connect to a system weakness, known as the attack surface. Vulnerability management is the cyclical practice of identifying, classifying, remediating, and mitigating vulnerabilities. Other vulnerabilities include security risks, security defects and constructs in programming languages that are difficult to use properly.

Vulnerabilities

SQL (Structured Query Language) is designed to be used in conjunction with relational database products as of a means of working with sets of data. SQL consists of data definition, data manipulation, and procedural elements. Its scope includes data insert, query, update and delete, schema creation and modification, and data access control.