News Feed
Jobs Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

PHPro.org:
PHP Security
September 18, 2008 @ 12:04:31

Kevin Waterson has posted a new article to his site today - an introductory look at security in your PHP applications.

One of the great benefits of PHP is its ease of access to new-comers. Its entry level is minimal and so attracts those looking for simple scripts to their sites. It is this same ease of access that becomes a problem as the new-comers begin to deal with input from users. Failure to adequately validate and sanitize data is the leading cause of security problems when dealing with PHP.

He looks at a few different areas that developers need to focus on (and be sure to filter on) like PHP_SELF, protection from email header injections, file inclusion and the use of error reporting to make handling user-generated errors "more correct".

0 comments voice your opinion now!
security tutorial phpself email header include error reporting


blog comments powered by Disqus

Similar Posts

DevShed: Using the Observer Design Pattern with Static Data in PHP 5

Pierre-Alain Joye's Blog: PHP Security Conference in Paris, 2007/01/29

Maurice Fonk's Blog: Smarty and the Zend Framework

Anthony Ferrara's Blog: The Secure Programmer's Pledge

DevShed: Sending MIME Email with PHP


Community Events











Don't see your event here?
Let us know!


symfony2 podcast hack security introduction language facebook hhvm package composer install performance series release unittest database framework opinion component application

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework