PHPDeveloper.org: Stefan Esser's Blog: Suhosin 0.9.21 - XSS Protection

	News Feed
	Jobs Feed

Sections

Tutorials

Books

Events

Talks

Jobs

News Archive

PHPMaster.com: Understanding HTTP Digest Access Authentication

NetTuts.com: How to Create a PyroCMS Theme

Gonzalo Ayuso: Google App Engine, PHP and Silex. Setting up a Login Provider

Michelangelo van Dam: Survived php tek 2013

Community News: Packagist Latest Releases for 05.21.2013

Community News: Latest PECL Releases for 05.21.2013

Symfony Blog: New in Symfony 2.3: Small things matter

PHP Town Hall Podcast: Episode #7 - Web Sockets Are Fast

7PHP.com: Know Thy PHP User Group Know The Leeds PHP User Group (LeedsPHP)

Andrew Podner: Functional Testing to Improve Quality Assurance (part 1)

Stefan Esser's Blog:
Suhosin 0.9.21 - XSS Protection

by Chris Cornutt November 30, 2007 @ 11:17:00

Stefan Esser has posted about the release of the latest version of the Suhosin security patch for PHP - version 0.9.21.

It has been a very long time since the last Suhosin extension has been released, but today this has changed with the release of Suhosin 0.9.21. Among the changes are two new features that will protect applications that put to much trust into the SERVER variables from several XSS (and SQL injection) attacks. These features are suhosin.server.strip and suhosin.server.encode.

He details these two features and gives examples of what they protect from. You can find out more about the Suhosin patch on its website.

0 comments voice your opinion now!
xss protection suhosin server strip encode xss protection suhosin server strip encode

blog comments powered by Disqus

Similar Posts

PHPBuilder.com: Securing Data Sent Via GET Requests

Jaanus\' Blog: How to retrieve remote files in your web apps and still be friends with the server

Greg Beaver's Blog: Chiara_PEAR_Server 0.18.7 released - a must-upgrade!

SitePoint PHP Blog: PHP Security - Dumb Users or Dumb APIs?

Brian Moon's Blog: PHP's MySQL connection timeout

Community Events

Don't see your event here?
Let us know!

All content copyright, 2013 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework