News Feed
Jobs Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Techie Talks Blog:
Building Secured Web Applications Using PHP - The Basics
June 24, 2011 @ 11:06:11

On the Techie Talks blog today there's a post from Idrish Laxmidhar with a few simple reminders of things you can do to help with the basic security of your PHP applications, mostly surrounding filtering and escaping.

The list includes some of the basics like:

  • Avoiding $_REQUEST when possible because of the ambiguity of where the information could come from
  • Keep register_globals off (thankfully a default!)
  • Checking values for specific data types before using them
  • Filtering user input
  • Disabling the error output (turning down the reporting levels) on a production environment

For some more good recommendations on good security practices in PHP applications, check out this list or some of the recommendations from the PHP manual itself.

3 comments voice your opinion now!
security web application basics


blog comments powered by Disqus

Similar Posts

DevShed: Introduction to Maintaining the State of Applications with PHP Sessions

Greg Beaver\'s Blog: Why it is very important to upgrade to PEAR 1.4.6 from PEAR 1.3.x

Job Posting: Engage Seeks PHP/MySQL Web Applications Developer (Flexible Location)

Matthew Weir O'Phinney's Blog: Cgiapp2 Tutorial 2 - Pluggable Applications

Zend Developer Zone: Blueprint for PHP Applications - Bootstrapping (Part 1)


Community Events











Don't see your event here?
Let us know!


unittest security framework podcast language application introduction facebook symfony2 component hack hhvm code example release overview install composer opinion package

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework