News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

PHP 10.0 Blog:
php -T (variable tainting)
December 11, 2006 @ 10:26:00

On the PHP 10.0 Blog, there's a new post today talking about variable tainting and what it might be like if PHP included it too.

Perl and Ruby have variable tainting. Maybe PHP should have it too?

Variable tainting is a bit of built-in functionality that provides a "safety net" of sorts to the contents of variables to help protect both the users and the script itself from potentially harmful content.

He talks about how Ruby and Perl handle the functionality and how, were PHP to work it in, which approach would fit better with PHP's current model:

If one wants to implement proper tainting or sandboxing, it probably should be based on more generic approach that would account for existence of functions unknown in design time.
0 comments voice your opinion now!
variable tainting perl ruby sandbox unsafe content protect variable tainting perl ruby sandbox unsafe content protect


blog comments powered by Disqus

Similar Posts

Enterprise PHP Magazine: How Many Perl, PHP, Python and Ruby Developers Are There?

Christian Flickinger's Blog: Ruby on Fails (story and stickers!)

Aaron Wormus' Blog: PHP CMS Historical Notes

Chris Shiflett's Blog: Blood, Sweat, and Swear: Terry Chay on Pro-PHP Podcast

Chris Shiflett\'s Blog: The addslashes() Versus mysql_real_escape_string() Debate


Community Events





Don't see your event here?
Let us know!


interview conference version configure framework list composer language laravel unittest community symfony podcast introduction threedevsandamaybe api opinion series voicesoftheelephpant release

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework