News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Templora.com:
Basic PHP Script Security
December 28, 2006 @ 15:49:05

As mentioned on Digg, there's a very simple guide to securing your PHP applications - or at least taking steps towards that.

For the purpose of this tutorial we have listed some commonly known attacks, and how to protect against them. This is crucial for beginners in PHP because PHP tutorials and basic documentation does not accentuate this problem enough. Examples are given that are vulnerable to attacks, and students are either not aware of the vulnerabilities, or are not adequately educated how to protect their scripts.

They topics they look at are SQL injections, XSS attacks, CSRF attacks, and PHP variable insertion. They talk talk about one of the best things you can do to help secure your site and its data - input filtering.

If you've been paying attention at all to the buzz in the PHP community lately, you'll know that articles like this are nothing new. These are the same things other developers are commenting on as well. It is good to see it get more exposure via digg though...

1 comment voice your opinion now!
basic security xss csrf attack injection sql input filter basic security xss csrf attack injection sql input filter


blog comments powered by Disqus

Similar Posts

Wojciech Sznapka's Blog: Loosening dependencies with closures in PHP

Zend Developer Zone: Zend_Log timestamp filter

Pierre-Alain Joye's Blog: PHP Security Conference in Paris, 2007/01/29

Christopher Kunz's Blog: Warning about the article "SQL Injection" in current "PHP Magazin"

Zend Developer Zone: OSCON Day 2: Picking Up Steam


Community Events





Don't see your event here?
Let us know!


developer bugfix interview release configure laravel list library project application community podcast threedevsandamaybe code introduction series wordpress framework language api

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework