Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Developer.com:
PHP Remains Strong Despite Security Flaws
Jun 04, 2010 @ 17:48:20

On Developer.com today there's a new article (from Sean Michael Kerner) that talks about the Month of PHP Security effort that's been going on and how, despite over 60 issues being reported, PHP remains strong.

Over the course of May, the PHP community was hit with a barrage of more than 60 security issues. The security assault was all part of the Month of PHP Security (MOPS) effort, which disclosed the flaws. But even after so many identified security issues in MOPS, PHP experts argue that the language is not necessarily insecure.

There's several quotes from Andi Gutmans (of Zend) with his thoughts on the bugs that were reported and how important he sees them as being (hint: nothing zero-day) and how developers are still, ultimately, the ones responsible for the security of their applications.

tagged: security flaw monthofphpsecurity mops andigutmans

Link:

Community News:
Month of PHP Security Begins
May 04, 2010 @ 17:45:27

With the start of May (2010) we've seen the start of the the Hardened-PHP group's "Month of PHP Security" project, an effort to bring more security to PHP and the applications running on it by showing problems with their security.

We welcome you to the Month of PHP Security 2010. This initiative continues the effort of Hardened-PHP's Month of PHP Bugs from 2007 to improve the security of PHP and the PHP ecosystem. During the Month of May 2010 we will post every day at least one new vulnerabilities in PHP and one new vulnerability in a PHP applications. In addition to that every other day we will post an article about a PHP security topic or a new PHP security tool. Among these articles and tools are those that were submitted to us during the Month of PHP Security CFP.

Six new issues and one article have already been posted as a part of the month's activity:

tagged: mops2010 monthofphpsecurity

Link:


Trending Topics: