News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Reddit.com:
Protecting against attack?
May 18, 2012 @ 10:19:35

In this recent post to Reddit.com, the question of application security is asked - the poster wants recommendations on how he should keep his app safe from would-be attackers:

I can code fairly well in PHP these days, but my security isn't so hot. Is there a tutorial or plugin you guys can recommend as to how I should be protecting my php pages/inputs? I want to avoid common attacks like XSS, inputs with NULL or DROP TABLE etc?

Responses on the post include recommendations related to:

  • Using the Chorizo scanner to find common issues in your code
  • Using PDO for database connections (with bound parameters)
  • Not trusting "$_SERVER"
  • Data sanitization

There's also links to a few other resources with more details.

0 comments voice your opinion now!
security attack opinion xss pdo validate filter


blog comments powered by Disqus

Similar Posts

PHP.net: PHP 5.4.19 and PHP 5.5.3 Released!

Pierre-Alain Joye's Blog: Welcome Amir and Validate-0.6.4 release

Greg Beaver's Blog: Update to libxml2 in PHP - progress hath been acquired

StackOverflow.com: What PHP framework would you choose for a new application and why?

PHPMaster.com: 8 Practices to Secure Your Web App


Community Events





Don't see your event here?
Let us know!


bugfix library interview voicesoftheelephpant list symfony introduction framework series tips laravel api release podcast developer language deployment zendserver conference community

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework