MySQL·À×¢Èë
·ÀÖ¹×¢ÈëµÄ¼¸ÖÖ°ì·¨
ÆäʵÔÀ´¾ÍÊÇÎÒÃÇÐèÒª¹ýÂËһЩÎÒÃdz£¼ûµÄ¹Ø¼ü×ֺͷûºÏÈ磺
Select£¬insert£¬update£¬delete£¬and£¬*£¬µÈµÈ
function inject_check($sql_str) {
return eregi('select|insert|update|delete|\'|\/\*|\*|\.\.\/|\.\/|union|into|load_file
|outfile', $sql_str);
}
»òÕßÊÇͨ¹ýϵͳº¯Êý¼äµÄ¹ýÂËÌØÊâ·ûºÅ
Addslashes£¨ÐèÒª±»¹ýÂ˵ÄÄÚÈÝ£©
Ïà¹ØÎĵµ£º
µ¼³ö
select field1,field2,field3 from tablename into outfile '/home/output1.csv' fields terminated by ','optionally enclosed by ''lines terminated by '\n';
µ¼Èë
load data local infile '/home/output1.csv' into table tablename fields terminated by ','lines terminated by '\n'(field1,f ......
ÅäÖø´ÖÆ
1.ÅäÖÃserver-idºÍlog-bin
2.Ö÷¿âÖÐÌí¼ÓÓÃÓÚ¸´ÖƵÄÓû§
GRANT REPLICATION SLAVE,reload,super ON *.*
TO 'repl'@'%.vm.dba.com' IDENTIFIED BY 'slavepass'
3.ÔÚ´Ó¿âÉÏÉèÖÃÓÃÓÚ¸´ÖƵÄÑ¡Ïî
server-id
master-host
master-user
master-password
--read-only ¸ÃÑ¡ÏîÈôӷþÎñÆ÷Ö»ÔÊÐíÀ´× ......
×¢Ò⣺mysqlÖеÄÓû§±äÁ¿µÄÉúÃüÖÜÆÚÊǻỰ¼¶µÄ£¬²»ÊÇÓï¾ä¼¶µÄ£¡
´æ´¢¹ý³Ì--------------------------------------------------
drop procedure if exists usp_simple;
delimiter //
create procedure usp_simple(in ip int, out op int, inout iop int)
begin
select count(*) into op from t1;
set op ......
ÒòΪMySQL±í±£´æΪÎļþ·½Ê½£¬ºÜÈÝÒ×±¸·Ý¡£ÒªÏë±£³Ö±¸·ÝµÄÒ»ÖÂÐÔ£¬¶ÔÏà¹Ø±íÖ´ÐÐLOCK TABLES²Ù×÷£¬È»ºó¶Ô±íÖ´ÐÐFLUSH TABLES¡£ÄãÖ»ÐèÒª¶ÁËø¶¨£»ÕâÑùµ±Ä㸴ÖÆÊý¾Ý¿âĿ¼ÖеÄÎļþʱ£¬ÔÊÐíÆäËü¿Í»§¼ÌÐø²éѯ±í¡£ÐèÒªFLUSH TABLESÓï¾äÀ´È·±£¿ªÊ¼±¸·ÝÇ°½«ËùÓ줻îµÄË÷ÒýҳдÈëÓ²ÅÌ¡£
±¸·Ý·½·¨£º
A.±¸·ÝµÄÊÇSQL½Å±¾
& ......
