Home
 

Customer Comments

"Evohosting is the best hoster i've come across. I've always said this and supported this fact. I even referred anyone who needs a hoster to Evohosting. I've used evohosting before and i had NO problems at all.. Customer Service is great, the hosting has no problems. Soon, I will start using them again as i have big projects ahead of me." -- Mustafa Melemendi

Archive for the ‘Special Offers’ Category

01/01 - January Sale!

Thursday, January 1st, 2009

Hello!

Happy New Year!

Things started of for us with a bang already! We just got voted for as ‘Shared Host Of the Month’ at Webhostdir for the second month in a row! Thanks to the customers who voted for us!

Also, our January Sale is in full effect!!

Order any new hosting plan this month and get:

- Double Diskspace & Bandwidth

- 25% Discount for your first payment (first payment can be for 1 month all the way upto 24 months) (Enter code JANSALE to take advantage of this)

- Grab a Shoutcast Radio server with your hosting account for only £5.75 a year.

- Free domain for the life of your hosting plan

- Free transfer from any other web host that runs cPanel

- Get 50% account credit for any sign-ups you get us (Join our Affiliate Scheme, in the Clients area)

Posted in Special Offers | No Comments »

24/09 - Dev :: Key-hash Security

Wednesday, September 24th, 2008
When programming websites today you always have to worry about the security and many beginners just don’t know how to tackle this. I hope the following will help some of you out there.A very simple yet effective way of making sure that your POST data is secure is to include a security hash. This is far more simple then it sounds, follow the below example and I’m sure you’ll understand.

The below goes in form.php/whatever.php

<?PHP $key = '"'.md5("key".date("Ymd").'"'; ?>
<form action="edit.php" method="post">
<input name="hash" type="hidden" value=<?PHP echo $key ?>>
</form>

Now this goes in edit.php/whatever.php

<?PHP
if ($_POST['hash'] != md5("key".date("Ymd")) {
  die("Restricted access!");
}
?>

I think that most of you understands what this does but just in case you don’t, in the form we have our hash key which is unique for your site and changes everyday. In the file that does the actual SQL query/other proccessing script we put in a line of pre that will “die” unless the correct key hash is entered.

Now this is just the basics of what you can do with key hashes, I have elaborated many systems with key hash security to be unique not only for the day but for every edit form, page or cookie. This will of course not stop the most relentless hackers but it will fend of a boatload of the less sofistacted hackers and bots.

Jan-Erik Lysander runs Lysander Consulting who specialise in IT / internet / web development.

Posted in Security, Special Offers, Web Development | 3 Comments »