PHPDeveloper.org: PHP Security Blog: Why I don't fear the Zend Framework

	News Feed
	Jobs Feed

Sections

Tutorials

Books

Events

Talks

Jobs

Recent Jobs

Job Posting: Bayser Consulting Seeks Analytical Programmer (Skokie, IL)

Job Posting: Revelation Partners (Recruiter) Seeks Mid-Principal PHP Developer (Boston, MA)

Dave Marshall's Blog: Competition: PHP Job Hunters Handbook up for grabs

Job Posting: LIVESTRONG.com/Demand Media Inc. Seeks Senior PHP Software Developer (Santa Monica, CA)

Job Posting: Children's Hospital Boston Seeks Open Source Web Developer (Boston, MA)

Job Posting: eReleases Seeks Zend/PHP Developer (Baltimore, MD)

Job Posting: Chegg Seeks Senior PHP Developer (Santa Clara, CA)

Job Posting: TEKSystems (Recruiter) Seeks PHP Web Application Developers (Tampa, FL)

Job Posting: Quinstreet, Inc. Seeks Sr. PHP Developer (Foster City, CA)

Job Posting: WideEye Interactive/Moroch Advertising Seeks Web Developer (Dallas, TX)

News Archive

Ken Guest's Blog: PHP for Enterprise/Business Whitepaper

PHPImpact Blog: PHP: Spaghetti alla Bolognese

CSS-Tricks.com: PHP for Beginners: Building Your First Simple CMS

IBuildings Blog: Book Review: TYPO3 Extension Development

Job Posting: Bayser Consulting Seeks Analytical Programmer (Skokie, IL)

Vinu Thomas' Blog: PHP functions in Javascript using PHP.JS

Job Posting: Revelation Partners (Recruiter) Seeks Mid-Principal PHP Developer (Boston, MA)

Community News: php|architect Free Webcast Series

Site News: Popular Posts for the Week of 01.09.2009

ElePHPant World Tour: The Elephpant World Tour 2008 is done!

PHP Security Blog:
Why I don't fear the Zend Framework

by Chris Cornutt November 14, 2005 @ 06:07:08

With all of the negative opinions flying around about the Zend Framework, Stefan Esser takes a look at the other side, the positive side of the Framework in this new post on the PHP Security Blog.

Until today there have been a lot of blog postings about the Zend Framework. People love or hate it for their own special reasons. I personally think that everyone who works on it should really consider what he does by signing the CLA and working on it. The message he gives is, that Zend is right in communicating the Zend Framework as a must, because all other frameworks are by definition bad and untrustworthy, because they are only developed by a bunch of open source geeks and there is no company in control.

On the other hand one must see what a framework, which is used everywhere means for security researchers like me. When a common framework is used, this is a single point of failure for tons of web applications. A security hole in the framework will expose a large number of servers at the same time.

It could be a scary world to have a "single point" that potential intruders could focus on, but then again, there's also all of those applications like phpBB that are *very* widely used that that same thing could be said for...

0 comments voice your opinion now!
php security zend framework php security zend framework

Similar Posts

O\'Reilly: Improve Your Build Process with Ant

Zend Developer Zone: Code is Beautiful

Tim Koschuetzki's Blog: New Poll (Using CakePHP)

KillerSoft.com: A Call for Feedback

Ben Ramsey\'s Blog: Create an Image from XML Data

Community Events

Don't see your event here?
Let us know!

All content copyright, 2009 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework