The fine folks over at Zend have posted the latest PHP Weekly Summary for this past week. There's mostly smaller things in here, with a few neat items - including the creation of a "SQLanywhere extension" and the new way that highlight_string will work (it won't require output buffering in the new version - it will get assigned to a variable like you would expect).

Also from Zend this morning, there's a new article about secure programming in PHP. It's a bad habit that a lot of us get into to assume that our code is safe. A lot of the PHP code out there (even production things like PHPNuke) is pretty buggy. This article talks about some of the common cavats that you just may not think about when you're writing up that next client's website. Several things are discussed including: files, global variables and SQL code problems. I'd suggest this article to everyone out there - from the beginner to the guru.

There's been a new(ish) cookie problem with Mozilla lately - almost the same one that Microsoft had with IE a while back. So, why haven't we heard about this one as much? Easy, one-word answer: Microsoft. Everyone wants to take the tech giant down. Anyway, the cookie problem in Mozilla "allows an attacker to, if he can convince the user's browser to load a given URL, steal their cookies for any given domain. It does not require that active scripting is enabled in the browser, and can be done with something as simple as an image tag, allowing for hassle free use in HTML email, web based email services, etc." I'm not sure about you, but there's some sensitive things stored in cookies these days...I'm glad this one was caught.