Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

CIO.com:
PHP's Enterprise Strengths and Weaknesses, Take 2
Mar 18, 2008 @ 16:19:37

As is pointed out both by Cal Evans and the Zend Developer Zone, there's been another article posted due to the response from the (now infamous) CIO article - "PHP’s Enterprise Strengths and Weaknesses, Take 2" (by Zend's John Coggeshall).

So, in the digital toolbox of the developer, where has PHP been designed to work best? And where is it, perhaps, not the best tool for the job? [...] While other languages can surely be used to solve The Web Problem, in this article I explain why PHP is the premier solution for server-side Web scripting.

John talks about how PHP was written for the web, how it approaches and handles web requests, the security of the language and some of the major software packages that are being used in PHP development today (like the Zend Framework, PHPUnit and PECL extensions).

tagged: johncoggeshall cio magazine response enterprise strength weakness

Link:

Secunia.com:
CodeIgniter Weakness and Directory Traversal Vulnerability
Jul 11, 2007 @ 16:07:00

On the Secunia.com site today, there's a new vulnerability posted that users of the CodeIgniter framework should pay attention to - a "weakness and directory traversal vulnerability".

Lukasz Pilorz has reported a vulnerability and a weakness in CodeIgniter, which can be exploited by malicious people to disclose sensitive information and conduct cross-site scripting and header injection attacks.

There are two problems that lead to this issue - a non-sanitized input parameter and unsanitized data being passed to the xss_clean function. These issues affect CodeIgniter version 1.5.3 and, as of the time of this post, no update has been made in an official release. It is mentioned, however, that the problem has been fixed in the CVS and is waiting for a release.

tagged: codeigniter weakness directory traversal vulnerability framework codeigniter weakness directory traversal vulnerability framework

Link:

Secunia.com:
CodeIgniter Weakness and Directory Traversal Vulnerability
Jul 11, 2007 @ 16:07:00

On the Secunia.com site today, there's a new vulnerability posted that users of the CodeIgniter framework should pay attention to - a "weakness and directory traversal vulnerability".

Lukasz Pilorz has reported a vulnerability and a weakness in CodeIgniter, which can be exploited by malicious people to disclose sensitive information and conduct cross-site scripting and header injection attacks.

There are two problems that lead to this issue - a non-sanitized input parameter and unsanitized data being passed to the xss_clean function. These issues affect CodeIgniter version 1.5.3 and, as of the time of this post, no update has been made in an official release. It is mentioned, however, that the problem has been fixed in the CVS and is waiting for a release.

tagged: codeigniter weakness directory traversal vulnerability framework codeigniter weakness directory traversal vulnerability framework

Link:

Mike Bernat's Blog:
PHP Cookies vs Sessions - The Breakdown
Dec 14, 2006 @ 22:58:00

In a recent post to his blog, Mike Bernat gets down to basics with one of the key pieces of functionality in PHP data persistence - cookies vs. sessions.

Knowing the basics of cookies and sessions is essential to any successful PHP programmer. It is useful to store pieces information on the users computer for later use. Things like when they last visited, language of choice, age, etc. Cookies and Sessions are the perfect solution to our needs.

He talks about both, including demonstration code to clarify some points and a chart at the end to compare their features, strengths, and weaknesses.

tagged: session cookie breakdown strength weakness chart compare session cookie breakdown strength weakness chart compare

Link:

Mike Bernat's Blog:
PHP Cookies vs Sessions - The Breakdown
Dec 14, 2006 @ 22:58:00

In a recent post to his blog, Mike Bernat gets down to basics with one of the key pieces of functionality in PHP data persistence - cookies vs. sessions.

Knowing the basics of cookies and sessions is essential to any successful PHP programmer. It is useful to store pieces information on the users computer for later use. Things like when they last visited, language of choice, age, etc. Cookies and Sessions are the perfect solution to our needs.

He talks about both, including demonstration code to clarify some points and a chart at the end to compare their features, strengths, and weaknesses.

tagged: session cookie breakdown strength weakness chart compare session cookie breakdown strength weakness chart compare

Link:


Trending Topics: