Prevent MySQL sql injection attacks using GreenSQL database Firewall

greensql
SQL Injection, yes It’s often happens around the web. In fact in real life example a lot of Content Management systems were affected by this weakness. Technically there was no software to protect or check SQL queries for suspected activity. Recently an open source software called GreenSQL offers a firewall solution for MySQL queries. It’s an Open Source database firewall used to protect databases from SQL injection attacks. GreenSQL works as a proxy for SQL commands and has built in support for MySQL. The logic is based on evaluation of SQL commands using a risk scoring matrix as well as blocking known db administrative commands (DROP, CREATE, etc). GreenSQL is distributed under the GPL license.

How it works?
GreenSQL acts as a reverse proxy for MySQL connections. It means, that instead of MySQL server, your applications will connect to GreenSQL server. GreenSQL will analyze SQL queries and forward them to the back-end MySQL server. Maybe this diagram will help you to understand the concept of it Continue reading

PHP5 Frameworks including PHP-AJAX Link Roll

Here are some of the Top PHP5 Frameworks and PHP5-Ajax Frameworks that is around the Net. Almost all of them are GPL/Open Source.

  1. CakePHP Framework
    CakePHP is a rapid development framework for PHP that provides an extensible architecture for developing, maintaining, and deploying applications. Using commonly known design patterns like MVC and ORM within the convention over configuration paradigm, CakePHP reduces development costs and helps developers write less code.
  2. PRADO PHP Framework
    PRADO is a component-based and event-driven programming framework for developing Web applications in PHP 5. PRADO stands for PHP Rapid Application Development Object-oriented
  3. Avesta – Zend-based PHP5 web framework
    Avesta is a rapid development PHP5 framework built on top of the Zend Framework libraries that emphasizes strict MVC separation and development speed
  4. BlueShoes php application framework and php cms
    BlueShoes is a comprehensive application framework and content management system. It is written in the widely used web-scripting language PHP.
  5. Zephyr
    Zephyr is an MVC (model-view-controller) framework and supports complete separation of business logic layer from presentation layer. It is built using popular and tested libraries in backend
  6. Tigermouse
    Tigermouse is object oriented, LGPL licensed PHP/AJAX framework for development of highly interactive web applications in MVC architecture. It requires no to little Javascript coding, no manual callbacks handling and no configuration
  7. AModules3
    AModules3 is the whole new concept to fully use potential of PHP5. Having conceptually proper MVC implementation, support for multiple APIs and fully OOP design makes it very good choice for writing serious applications
  8. Akelos PHP Framework
    The Akelos Framework is Akelos is a PHP4 and PHP5 port of Ruby on Rails Web Development Framework
  9. symfony – open-source PHP5 web framework
    Based on the best practices of web development, thoroughly tried on several active websites, symfony aims to speed up the creation and maintenance of web applications, and to replace the repetitive coding tasks by power, control and pleasure.
  10. PHITE
    PHITE is a simple but powerful site framework written in PHP
  11. Carthag applications platform
    Carthag’s main purpose is to bring PHP at the Enterprise level. This is achieved by using new PHP 5 OOP features, adopting Design Patterns and bringing some other platforms ideas (in particular Java) to Carthag.
  12. Solar Framework for PHP 5
    The Simple Object Library and Application Repository (SOLAR) is a library-like framework organized in a fashion similar to PEAR and Horde, and is PHP5
  13. HTML_AJAX
    HTML_AJAX PHP and JavaScript AJAX library
  14. jMaki
    jMaki is an Ajax framework that provides a lightweight model for creating JavaScript centric Ajax-enabled web applications using Java, Ruby, PHP, and Phobos
  15. Cajax
    Cajax is a PHP object-oriented framework to create and handle server-side requisitions through javascript remote calls
  16. tppAJAX
    tppAJAX is a lightweight, yet feature-rich PHP and Ajax toolkit that is compatible with PHP versions 4 and 5

More AJAX PHP Listing at Ajaxpatterns.org