Skip to main content

Openings for different technoogies.

3 comments

PHP Interview questions 4

1) what is magic quotes?
Ans :      Magic Quotes is a process that automagically escapes ncoming data to the PHP script. It’s preferred to code with magic quotes off and to instead escape the data at runtime, as needed. This feature has been DEPRECATED as of PHP 5.3.0 and REMOVED as of PHP 6.0.0. Relying on this feature is highly discouraged.

2) what is cross site scripting? SQL injection?
Ans :      Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications which allow code injection by malicious web users into the web pages viewed by other users. Examples of such code include HTML code and client-side scripts. SQL injection is a code injection technique that exploits a security vulnerability occurring in the database layer of an application. The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed
                 
3) what is URL rewriting?
Ans :      Using URL rewriting we can convert dynamic URl to static URL Static URLs are known to be  better than Dynamic URLs because of a number of reasons 1. Static URLs typically Rank better in Search Engines. 2. Search Engines are known to index the content of dynamic pages a lot slower compared to static pages. 3. Static URLs are always more friendlier looking to the End Users. along with this we can use URL rewriting in adding variables [cookies] to the URL to handle the sessions.
                 
4) what is the major php security hole? how to avoid?
Ans :      1. Never include, require, or otherwise open a file with a filename based on user input, without thoroughly checking it first.
2. Be careful with eval() Placing user-inputted values into the eval() function can be extremely dangerous. You essentially give the malicious user the ability to execute any command he or she wishes!
3. Be careful when using register_globals = ON It was originally designed to make programming in PHP easier (and that it did), but misuse of it often led to security holes
4. Never run unescaped queries
5. For protected areas, use sessions or validate the login every time.
6. If you don’t want the file contents to be seen, give the file a .php extension.

5) whether PHP supports Microsoft SQL server ?
Ans :      The SQL Server Driver for PHP v1.0 is designed to enable reliable, scalable integration with SQL Server for PHP applications deployed on the Windows platform. The Driver for PHP is a PHP 5 extension that allows the reading and writing of SQL Server data from within PHP scripts. using MSSQL or ODBC modules we can access Microsoft SQL server.
Labels:

Comments

Post a Comment

Popular posts from this blog

Urgent Recruitment For Freshers And Experienced at TATA Power

Company Profile: Tata Power Solar with 25 years of deep domain expertise, is one of the pioneering solar manufacturers in the world and India's largest specialized EPC player. Reference link :http://www.tatapower.com/careers/opportunities.aspx Job Role : Graduate Trainee Job Type : Engineering jobs Job Details : At Tata Power we have a vision of where we want to go, and it’s really exciting. Would you like to be part of a company that is making history? Towards this objective, Tata Power participates in campus recruitments and is the company of choice in most major engineering institutes such as National Insitute of Technology, VJTI, Govt. Engineering Colleges, Birla Institute of Technology, NPTI, MS University, Nirma Institute of Technolgy, etc. Apart from college hiring, we also hire experienced professionals from the industry at various mid-level and senior positions. A Structured Induction Programme is carried out for: Graduate Engineer Trainees (GETs) All the GETs und...
Post a Comment
Read more

We have the openings for Python,Django

Job Synopsis         Python / Django Openings With Symphony Teleca - Bangalore Company:         Symphony Experience:      5 to 10 yrs Location:         Bengaluru/Bangalore Job Description         Work Location: Bangalore (ITPL) Experience: 2-10 Yrs (SE, SSE, Lead, Architect/Manager) Mandatory Skills: Django 1.3.3 Python 2.6 Mysql 5.1 / Postgres 9.1 / any other DB Optional Skills: Celery 3.0.5, Httpd, Nginx, Memcache, Jquery Please revert with your updated CV's ASAP. Regards, Deepthi. Role:                         Team Lead/Technical Lead Role Category:         Programming & Design Industry Type:         IT-Software / Software Services Functiona...
Post a Comment
Read more

Looking for Drupal Themer

Location : Bangalore Position : Drupal Themer Job Responsibilities: • Work with Drupal Developer in porting pages to Drupal • Responsible for building Drupal themes and template files for themes for requirements specified Preferred profile: Strong Knowledge of Drupal coding standards. Strong grasp of semantic, HTML and CSS based design • Experience in converting PSDs and into functional Drupal themes from scratch • Experience in creating well-commented, Zen-based subthemes (http://drupal.org/project/zen) from provided layered Photoshop compositions, including creating and editing templates for different node-types and pages, editing .info files, and adding additional theme settings using the Drupal Form API. • Experience in adding, editing and deleting pages, users, user groups, blocks, and block areas on a pre-existing Drupal installation based on provided directions, text, pictures and wireframes • Experience in testing and modifying Drupal themes and stylesheets to ensure consistent...
1 comment
Read more