62,046
社区成员
发帖
与我相关
我的任务
分享
using System;
using System.Data;
using System.Web.Security;
namespace Myjiami
{
public class MyFM
{
public static string GetMD5Hash(string str,int code) //MD5加密
{
if(code==16) //16位MD5加密(取32位加密的9~25字符)
{
return System.Web.Security.FormsAuthentication.HashPasswordForStoringInConfigFile(str,"MD5").ToLower().Substring(8,16) ;
}
else//32位加密
{
return System.Web.Security.FormsAuthentication.HashPasswordForStoringInConfigFile(str,"MD5").ToLower();
}
}
public static string FilterSql(string source)//过滤安全字符
{
source = source.ToLower();
source = source.Replace("'", "");
source = source.Replace("\"", "");
source = source.Replace("/", "");
source = source.Replace("|", "");
source = source.Replace(";", "");
source = source.Replace(":", "");
source = source.Replace("(", "");
source = source.Replace(")", "");
source = source.Replace("%", "");
source = source.Replace("&", "");
source = source.Replace("?", "");
source = source.Replace("+", "");
source = source.Replace("^", "");
source = source.Replace("--", "");
source = source.Replace("<", "");
source = source.Replace(">", "");
source = source.Replace("{", "");
source = source.Replace("}", "");
source = source.Replace("[", "");
source = source.Replace("]", "");
source = source.Replace("]", "");
source = source.Replace("=", "");
source = source.Replace("select", "");
source = source.Replace("where", "");
source = source.Replace("cmd", "");
source = source.Replace("from", "");
source = source.Replace("and", "");
source = source.Replace("or", "");
source = source.Replace("execute", "");
source = source.Replace("xp_", "");
source = source.Replace("sp_", "");
source = source.Replace("Chr(34)", "");
source = source.Replace("Chr(0)", "");
source = source.Replace("0x", "");//防止16进制注入
return source;
}
}
}
using Myjiami;//引入MD5.cs加密
string password1 = Myjiami.MyFM.GetMD5Hash(context.Request["password"].ToString(),16);