PHPDeveloper.org

Matthew Turland's Blog: The Yin and Yang of Typing

Fri, 01 Feb 2008 11:58:00 -0600

A little while back Matthew Turland posted about something that some developers moving over to PHP from more strict languages have an issue with - variable typing - and how its evolved in languages over time.

Without a little background in programming languages or computer science in general, it's entirely possible that typing systems are not something that have crossed your mind. I thought I'd take a blog entry to share some of my thoughts on how it's affecting the creation and evolution of languages.

He walks through history a bit, mentioning C, Java, Python and PHP and how they differ in their default type handling. He especially focuses on the "blurred line" between strong and weak typing and how some if offers special features to the language that uses the method.

ITJungle.com: System i PHP Drive Going Strong, Zend Says

Tue, 03 Oct 2006 07:12:19 -0500

From ITJungle.com today, there's a new article that talks to Zend about their effort to get PHP pushed to the System i platform via the Zend Core and the progress it's making.

The push to create a new generation of young PHP programmers and PHP-driven Web applications on the IBM System i is moving forward according to plan, according to Zend Technology, the company commercializing the open source scripting language and providing support and training services. "Things are going phenomenally well," Zend business development vice president Mike Pinette says, giving evidence of that early success. "We're firing on all cylinders."

They go on to talk about other offerings Zend is making available for the platform including their popular Zend Platform package. There's talk of how Zend's effort is spreading (across countries) and their additional focus on the "bread and butter" shops - "manufacturers, distributors, retail chains, banks, and financial institutions that have heavily invested in OS/400 and RPG over the years".

Chris Shiflett's Blog: PHP Insecurity

Tue, 24 Jan 2006 06:34:00 -0600

Chris Shiflett's latest post mentions this criticism of PHP's insecurity as made by Andrew van der Stock.

Andrew van der Stock has written a strong criticism of PHP's insecurity. Andrew is a seasoned security expert and a major contributor to OWASP, and he states:

"After writing PHP forum software for three years now, I've come to the conclusion that it is basically impossible for normal programmers to write secure PHP code. It takes far too much effort."

He continues, citing specific areas where he thinks PHP is weak and asserting that "PHP must now mature and take on a proper security architecture."

Chris also mentions that some of the reasons Andrew mentions include register_globals, magic_quotes_gpc, and safe_mode - all due to be removed in the latest PHP version (6). Also, be sure to check out the comments on the post for a good bit more information and discussion...