PHPDeveloper: PHP News, Views and Community

Subscribe

@phpdeveloper.org

News Archive

Community News: Latest PECL Releases (09.10.2024)

Community News: Latest PECL Releases (09.03.2024)

Community News: Latest PECL Releases (08.27.2024)

Community News: Latest PECL Releases (08.20.2024)

Community News: Latest PECL Releases (08.13.2024)

Community News: Latest PECL Releases (08.06.2024)

Community News: Latest PECL Releases (07.30.2024)

Community News: Latest PECL Releases (07.23.2024)

Community News: Latest PECL Releases (07.16.2024)

Community News: Latest PECL Releases (07.09.2024)

Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

IBM DeveloperWorks:
Seven habits for writing secure PHP applications

byChris Cornutt Oct 01, 2008 @ 15:28:55

The IBM DeveloperWorks site has posted some advice that can help keep you, your application and your data safe from security-related attacks.

Security in a PHP application includes remote and local security concerns. Discover the habits PHP developers should get into to implement Web applications that have both characteristics.

The habits in their list are:

Validate input
Guard your file system
Guard your database
Guard your session
Guard against XSS vulnerabilities
Guard against invalid posts
Protect against CSRF

Each comes with their own explanation and for some, code to help you spot the mistakes and correct them.