可以监控是哪个文件执行的sql语句么？-PHP Tutorial-php.cn

Home

Backend Development

PHP Tutorial

可以监控是哪个文件执行的sql语句么？

WBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWB

Jun 23, 2016 pm 01:58 PM

有给项目我接手维护，开发人员不是我，但是发现网站可能有后门。
经常被人修改数据。
但是一个文件一个文件看也不一定能找到。
所以想监控哪个文件执行的操作记录下来分析。。
请问有什么方法么？

回复讨论(解决方案)

你的项目使用了数据库类吗？

是指在数据库操作的时候都调用了conn.php这样子么

你的项目使用了数据库类吗？

include文件夹下有db_mysql.class.php

先检查除 db_mysql.class.php 以外的文件中是否有 mysql_query 字样
如果有，则都是需要甄别的地方

在 db_mysql.class.php 文件中方法名含有 query、execute、insert、update、fetch 字样的方法中
加入

file_put_contents('log.txt', print_r(debug_backtrace(), 1), FILE_APPEND);

就可从文件 log.txt 中看到是从什么地方执行了什么样的 sql 指令了

水一下，以后遇到了再看

file_put_contents('log.txt', print_r(debug_backtrace(), 1), FILE_APPEND);

就可从文件 log.txt 中看到是从什么地方执行了什么样的 sql 指令了

谢谢。不过我发现有的php文件也自己用到了一些sql语句。我能不能直接写在config.php 里面啊？

file_put_contents('log.txt', print_r(debug_backtrace(), 1), FILE_APPEND);

就可从文件 log.txt 中看到是从什么地方执行了什么样的 sql 指令了

Array
(
    [0] => Array
        (
            [file] => /www/web/zlhk/public_html/include/conn.php
            [line] => 3
            [function] => include
        )

    [1] => Array
        (
            [file] => /www/web/zlhk/public_html/madmin45/users.php
            [line] => 8
            [args] => Array
                (
                    [0] => /www/web/zlhk/public_html/include/conn.php
                )

            [function] => include
        )

)
Array

全是类似注意的数据

那是你没按我说的去做！

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Working with Flash Session Data in LaravelMar 12, 2025 pm 05:08 PM

Laravel simplifies handling temporary session data using its intuitive flash methods. This is perfect for displaying brief messages, alerts, or notifications within your application. Data persists only for the subsequent request by default: $request-

cURL in PHP: How to Use the PHP cURL Extension in REST APIsMar 14, 2025 am 11:42 AM

The PHP Client URL (cURL) extension is a powerful tool for developers, enabling seamless interaction with remote servers and REST APIs. By leveraging libcurl, a well-respected multi-protocol file transfer library, PHP cURL facilitates efficient execution of various network protocols, including HTTP, HTTPS, and FTP. This extension offers granular control over HTTP requests, supports multiple concurrent operations, and provides built-in security features.

Simplified HTTP Response Mocking in Laravel TestsMar 12, 2025 pm 05:09 PM

Laravel provides concise HTTP response simulation syntax, simplifying HTTP interaction testing. This approach significantly reduces code redundancy while making your test simulation more intuitive. The basic implementation provides a variety of response type shortcuts: use Illuminate\Support\Facades\Http; Http::fake([ 'google.com' => 'Hello World', 'github.com' => ['foo' => 'bar'], 'forge.laravel.com' =>

12 Best PHP Chat Scripts on CodeCanyonMar 13, 2025 pm 12:08 PM

Do you want to provide real-time, instant solutions to your customers' most pressing problems? Live chat lets you have real-time conversations with customers and resolve their problems instantly. It allows you to provide faster service to your custom

PHP Logging: Best Practices for PHP Log AnalysisMar 10, 2025 pm 02:32 PM

PHP logging is essential for monitoring and debugging web applications, as well as capturing critical events, errors, and runtime behavior. It provides valuable insights into system performance, helps identify issues, and supports faster troubleshoot

Explain the concept of late static binding in PHP.Mar 21, 2025 pm 01:33 PM

Article discusses late static binding (LSB) in PHP, introduced in PHP 5.3, allowing runtime resolution of static method calls for more flexible inheritance.Main issue: LSB vs. traditional polymorphism; LSB's practical applications and potential perfo

Customizing/Extending Frameworks: How to add custom functionality.Mar 28, 2025 pm 05:12 PM

The article discusses adding custom functionality to frameworks, focusing on understanding architecture, identifying extension points, and best practices for integration and debugging.

Framework Security Features: Protecting against vulnerabilities.Mar 28, 2025 pm 05:11 PM

Article discusses essential security features in frameworks to protect against vulnerabilities, including input validation, authentication, and regular updates.

See all articles