On Ilia Alshanetsky's blog today, there's a reminder about the release of one of the latest php|architect books - "php|architect's Guide to Security" - authored by Ilia.

About five months ago, during yet another flood of phpBB2 exploits Marco Tabini approached me with an idea of writing a security book for PHP. The idea was to provide a guide for people who want to make their applications safer as well as help them understand the possible consequences of various exploits. I thought the idea was quite appealing, a feeling a bit confident after a fairly extensive article authorship decided to take up the task.

And so, for the next several months I was focused on effectively doing a brain dump of my knowledge on security. [...] But with the help of Marco, my technical reviewer and Martin Streicher who has done a tremendous job at cleaning up my ranting, I think we've got an excellent PHP security resource. The book itself is 201 pages, a bit longer then anticipated, but gave me the opportunity to cover each topic in a fair amount of detail.

Here's a brief list of some of the things that the book covers: Input validation, SQL Injections, Command Injections, Securing File Access, Sandboxes and Tar Pits, and Securing Your Applications. There's tons more in this great resource, so be sure to head on over and check it out...