PHPDeveloper.org: PHP Security Blog: Int. PHP Conf 2005 - A sniffer's paradise

	News Feed
	Jobs Feed

Sections

Tutorials

Books

Events

Talks

Jobs

Recent Jobs

Job Posting: Bayser Consulting Seeks Analytical Programmer (Skokie, IL)

Job Posting: Revelation Partners (Recruiter) Seeks Mid-Principal PHP Developer (Boston, MA)

Dave Marshall's Blog: Competition: PHP Job Hunters Handbook up for grabs

Job Posting: LIVESTRONG.com/Demand Media Inc. Seeks Senior PHP Software Developer (Santa Monica, CA)

Job Posting: Children's Hospital Boston Seeks Open Source Web Developer (Boston, MA)

Job Posting: eReleases Seeks Zend/PHP Developer (Baltimore, MD)

Job Posting: Chegg Seeks Senior PHP Developer (Santa Clara, CA)

Job Posting: TEKSystems (Recruiter) Seeks PHP Web Application Developers (Tampa, FL)

Job Posting: Quinstreet, Inc. Seeks Sr. PHP Developer (Foster City, CA)

Job Posting: WideEye Interactive/Moroch Advertising Seeks Web Developer (Dallas, TX)

News Archive

Ken Guest's Blog: PHP for Enterprise/Business Whitepaper

PHPImpact Blog: PHP: Spaghetti alla Bolognese

CSS-Tricks.com: PHP for Beginners: Building Your First Simple CMS

IBuildings Blog: Book Review: TYPO3 Extension Development

Job Posting: Bayser Consulting Seeks Analytical Programmer (Skokie, IL)

Vinu Thomas' Blog: PHP functions in Javascript using PHP.JS

Job Posting: Revelation Partners (Recruiter) Seeks Mid-Principal PHP Developer (Boston, MA)

Community News: php|architect Free Webcast Series

Site News: Popular Posts for the Week of 01.09.2009

ElePHPant World Tour: The Elephpant World Tour 2008 is done!

PHP Security Blog:
Int. PHP Conf 2005 - A sniffer's paradise

by Chris Cornutt November 11, 2005 @ 05:51:40

On the PHP Security Blog today, there's This post with a little bit different take on the International PHP Conference - of course, more from the security side of things.

I really enjoyed my stay, because I learned a lot about how the german PHP community ticks and what information they miss in my documentation. However from a security point of view the PHP conference was a nightmare...

The NH Hotel had a open and free WLAN during the conference days, which I consider quite stupid at a place where lots of IT people are meeting. The connection to the internet was quite slow, so the danger of a large scale anonymous attack was quite low, but a lot of people were using the anonymity to perform XSS and SQL injection attacks on websites of other visitors.

While this dosen't have much to do with PHP itself, it is interesting to see that there was enough XSS and SQL injections going on to get noticed. Granted, some of it was probably at the request of someone else for testing purposes, but there's still potential there. I think the PHP Lounge was a good idea if for nothing else than providing developers with a sounding board for these kinds of issues, a way for them to have others help them test...

0 comments voice your opinion now!
php conference international 2005 sniffer security php conference international 2005 sniffer security

Similar Posts

Performancing.com: HOW TO - Create Intelligent Blog Ads

Community News: MAMP - Mac, Apache, MySQL, and PHP Installer

Community News: Wordpress 2.0 Beta 1 Released

Tobias Schlitt\'s Blog: PHP at FrOSCon - Call for papers!

Chris Shiflett\'s Blog: PHP Insecurity

Community Events

Don't see your event here?
Let us know!

All content copyright, 2009 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework