News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

JSLabs Blog:
Is your website secure?
March 21, 2007 @ 08:12:00

In the spirit of the Month of PHP Bugs going on right now (March 2007), Justin Silverton has spotlighted just a few of them in a new entry to the JSLabs blog today.

He mentions issues like:

  • a header() issue that results from a call to it with an all-whitespace string
  • a session issue in PHP5 where an identifier isn't freed correctly
  • and an issue with the compress.bzip2 URL wrapper not following safe_mode or open_basedir restrictions (already corrected).
These are just a few of the bugs that have been reported during the month-long event, so check out php-security.org. He also points to the Suhosin patch that can help alleviate some of these issues.

0 comments voice your opinion now!
secure monthofphpbugs2007 example secure monthofphpbugs2007 example


blog comments powered by Disqus

Similar Posts

Kevin Schroeder's Blog: My first stab at the Dependency Injection Container in Zend Framework 2

Raphael Stolt's Blog: Creating Zend Framework snippets for TextMate

Raphael Stolt's Blog: Creating and using Phing ad hoc tasks

IBM developerWorks: 30 game scripts you can write in PHP, Part 1: Creating 10 fundamental scripts

Synfony Project: New testing framework


Community Events





Don't see your event here?
Let us know!


development introduction list deployment framework community interview release tips code symfony language series threedevsandamaybe zendserver laravel podcast api conference developer

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework