Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Asmir Mustafic:
How do I deploy my Symfony API - Part 5 - Conclusion
Oct 31, 2017 @ 12:47:25

Asmir Mustafic has finished out his series showing his method for the deployment of Symfony applications with part five sharing some additional improvements that could be made to the system created in the four previous parts.

This is the fifth post from a series of posts that described the whole deploy process from development to production of a Symfony API. This series of blog posts had the aim to show a possible approach to build a continuous integration and continuous delivery pipeline.

The continuous integration and continuous delivery process reduces bugs and makes the development simper. [...] As always happen in software development, solutions are not perfect. There is always room for improvement. Here are few examples of what could have be done better. Obviously can be done better and this are not all the possible improvements that can be done on the system.

In the remainder of the article he includes changes that could be made to the:

  • migration execution, allowing for it to be done between deployments
  • performing health checks of the API
  • Docker container placement
  • putting PHP and Nginx into the same container
  • "node draining" (removing a node from a cluster)

He wraps up the post with a mention of a tool, Kubernetes, that can help to make the configuration and management of your containers easier.

tagged: deploy symfony api tutorial series part5 conclusion

Link: https://www.goetas.com/blog/how-do-i-deploy-my-symfony-api-part-5-conclusion/

Ivo Jansch's Blog:
Apple, Microsoft and PHP are vulnerable
Aug 26, 2008 @ 08:47:28

Ivo Jansch mentions an interesting comparison that CNet made on security and levels of vulnerability in a new blog post today. Their article mentions PHP right along side Apple and Microsoft in their list of "most vulnerable software".

This article once again demonstrates the cluelessness that some people have regarding what PHP is. First of all, PHP is not a vendor, so "Apple, Microsoft & PHP" does not make much sense. Furthermore, the only reason PHP even is mentioned in this context is that Joomla, Drupal and Wordpress appear in the list. So PHP, a programming language, gets blamed for the security flaws that are in these packages.

By their logic (applications written in a language on the list means the language is more insecure), they should have marked C as a more insecure language given the ratio of PHP to C software.

tagged: apple microsoft vulnerable wordpress drupal joomla invalid conclusion

Link:

ComputerWorld:
Esser vindicated by PHP bug project
Apr 11, 2007 @ 19:45:04

Frank Lopez has tipped us off to a new article over on the ComputerWorld website of an interview by Howard Dahdah with Stefan Esser about the recently passed Month of PHP Bugs project he's just wrapped.

Last month, Stefan Esser, an independent security consultant and a founder of both the Hardened-PHP Project and PHP Security Response Team (which he has since left), launched his Month of PHP Bugs as a way of improving the security of PHP by outing flaws in its source code.

Making himself a target for criticism through this undertaking (the PHP developer community is a spirited bunch), Esser was surprised at the positive feedback he received at the conclusion of the project. He speaks here with Howard Dahdah.

They talk about the outcome of the project, what he (Esser) thinks he's achieved, what kind of feedback he's gotten about it, and what kind of impact this should have on the opinions the use of PHP for businesses and developers all across the community.

tagged: stefanesser monthofphpbugs interview conclusion stefanesser monthofphpbugs interview conclusion

Link:

ComputerWorld:
Esser vindicated by PHP bug project
Apr 11, 2007 @ 19:45:04

Frank Lopez has tipped us off to a new article over on the ComputerWorld website of an interview by Howard Dahdah with Stefan Esser about the recently passed Month of PHP Bugs project he's just wrapped.

Last month, Stefan Esser, an independent security consultant and a founder of both the Hardened-PHP Project and PHP Security Response Team (which he has since left), launched his Month of PHP Bugs as a way of improving the security of PHP by outing flaws in its source code.

Making himself a target for criticism through this undertaking (the PHP developer community is a spirited bunch), Esser was surprised at the positive feedback he received at the conclusion of the project. He speaks here with Howard Dahdah.

They talk about the outcome of the project, what he (Esser) thinks he's achieved, what kind of feedback he's gotten about it, and what kind of impact this should have on the opinions the use of PHP for businesses and developers all across the community.

tagged: stefanesser monthofphpbugs interview conclusion stefanesser monthofphpbugs interview conclusion

Link: