News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Pádraic Brady:
PHP Security Taking PHP Security Seriously By Taking It Seriously
October 02, 2012 @ 10:13:06

In his latest post, Pádraic Brady suggests that you take PHP security seriously and start really thinking about the security of your applications, not just talking about them.

Most programmers treat security as an afterthought and engage in zero self-directed education about security in general. The most common response is actually shock, followed by denial, followed by excited elation at the idea of fixing stuff, followed by the sobering realisation that someone somewhere is an evil fucker for making their lives harder by not telling them all this sooner. Some graduate further into taking security seriously, seriously. This is actually PHP's current failing: Knowledge.

He talks about some of the mislead beliefs that many PHP developers share about the "One True Way" to secure their applications from common things like XSS and CSRF. He also shares his thoughts on how to solve this knowledge problem...and it's not by reading the same things we have been for years now. New knowledge needs to be shared, new questions need to be asked and new methods need to be shared for effective security precautions.

Knowledge is the essential ingredient to improving PHP Security. What you don't know can bite you; what you do know can be hunted down and shot.
0 comments voice your opinion now!
security application threat knowledge questions opinion


blog comments powered by Disqus

Similar Posts

Michael Kimsal's Blog: Why I think PDO sucks

PHPClasses.org: Using PHP-GTK to serve Web Applications to HTML 5 Browsers

Zend Developer Zone: The ZendCon Sessions Episode 1:The State of PHP Security

SitePoint Programming Blog: What is the Best Programming Language to Learn in 2014?

Raphael Stolt's Blog: Validating XML files within PHP 4 applications


Community Events





Don't see your event here?
Let us know!


code developer laravel list unittest framework introduction podcast interview series community language opinion testing refactor symfony2 experience release install threedevsandamaybe

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework