News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Tobias Schlitt's Blog:
Taint mode for PHP?
December 19, 2006 @ 11:03:00

Tobias Schlitt has a great (long) post responding to a proposal made on the php.internals mailing list for the inclusion of "taint mode" in upcoming PHP versions.

Tobias starts with an overview of what "taint mode" is so that everyone's on the same page. His example involves the incoming and outgoing data usually involved in an application and how the incoming can be the most problematic when it comes to the values inside. This is where taint mode can come to the rescue. At its most basic level, it's a method for, assuming everything coming in is "tainted", creating a mechanism to automatically clean the data before it's even touched.

With the basics down, Tobias looks back to the proposal for a few additional comments. He considers the proposal a great way to introduce the functionality to the language. There are some draw backs he mentions, though, including the additional overhead of working through every inputted value.

Overall, I think this whole thing would be a great addition to PHP and I hope this could come for 6.0. What do you think?

You can also check out some other opinions on the matter:

0 comments voice your opinion now!
taint mode proposal basic insecure data opinion response taint mode proposal basic insecure data opinion response


blog comments powered by Disqus

Similar Posts

Bas De Nooijer's Blog: Benchmarking PHP Solr response data handling

Rafael Dohms' Blog: PHP Benelux 2012 Ė Learning lessons

PHPClasses.org: 4 Reasons Why All PHP Frameworks Suck?

Indra Dutta's Blog: Top 5 reasons why PHP is a better choice than java & .NET for most websites

James Fuller's Blog: Why canít someone just make a good IDE for PHP?


Community Events





Don't see your event here?
Let us know!


laravel series wordpress podcast bugfix community threedevsandamaybe code introduction symfony api install interview library language release application developer configure list

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework