News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

PHP Security Blog:
Int. PHP Conf 2005 - A sniffer's paradise
November 11, 2005 @ 05:51:40

On the PHP Security Blog today, there's This post with a little bit different take on the International PHP Conference - of course, more from the security side of things.

I really enjoyed my stay, because I learned a lot about how the german PHP community ticks and what information they miss in my documentation. However from a security point of view the PHP conference was a nightmare...

The NH Hotel had a open and free WLAN during the conference days, which I consider quite stupid at a place where lots of IT people are meeting. The connection to the internet was quite slow, so the danger of a large scale anonymous attack was quite low, but a lot of people were using the anonymity to perform XSS and SQL injection attacks on websites of other visitors.

While this dosen't have much to do with PHP itself, it is interesting to see that there was enough XSS and SQL injections going on to get noticed. Granted, some of it was probably at the request of someone else for testing purposes, but there's still potential there. I think the PHP Lounge was a good idea if for nothing else than providing developers with a sounding board for these kinds of issues, a way for them to have others help them test...

0 comments voice your opinion now!
conference international 2005 sniffer security conference international 2005 sniffer security


blog comments powered by Disqus

Similar Posts

Wez Furlong\'s Blog: Upcoming Conference Appearances

Laura Thomson\'s Blog: NYPHP Conference 2006 (\"Writing Maintainable Code\")

php|architect: Free PHP 5 Certification at php/db|works

PHP Security Blog: Int. PHP Conf 2005 - A sniffer\'s paradise

DynamicWebPages.de: PHP at LinuxTag 2006 - May 3rd-6th


Community Events





Don't see your event here?
Let us know!


list threedevsandamaybe api code application wordpress developer interview configure library release podcast series language introduction install laravel unittest community framework

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework