PHPDeveloper: PHP News, Views and Community

Subscribe

@phpdeveloper.org

News Archive

Community News: Latest PECL Releases (06.17.2025)

Community News: Latest PECL Releases (06.10.2025)

Community News: Latest PECL Releases (06.03.2025)

Community News: Latest PECL Releases (05.27.2025)

Community News: Latest PEAR Releases (05.26.2025)

Community News: Latest PECL Releases (05.20.2025)

Community News: Latest PECL Releases (05.13.2025)

Community News: Latest PECL Releases (05.06.2025)

Community News: Latest PECL Releases (04.29.2025)

Community News: Latest PECL Releases (04.22.2025)

Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

O'Reilly:
Keeping it All Secure (Part 1)

byChris Cornutt Mar 24, 2003 @ 13:18:07

Over on the O'Reilly Network this morning, there's a new piece with a few helpful hints on making your code a bit more secure from the outside world.

Most of the tips in Ten Security Checks for PHP, Part 1 are pretty standard, things like: Avoid Using Variables When Accessing Files, and Do Not Trust Global Variables. Tips like these can either be paid attention to now, or can be found out the hard way later, with SQL injections through forms, or even variables being called that never should have existed. Since this is just part one, there'll be more of these coming, but I'd recommend this reading to everyone out there. Even if you've been doing PHP for a long time now, it's nice to catch up and understand the security of your code better.

tagged:

Link: