News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Templora.com:
Basic PHP Script Security
December 28, 2006 @ 15:49:05

As mentioned on Digg, there's a very simple guide to securing your PHP applications - or at least taking steps towards that.

For the purpose of this tutorial we have listed some commonly known attacks, and how to protect against them. This is crucial for beginners in PHP because PHP tutorials and basic documentation does not accentuate this problem enough. Examples are given that are vulnerable to attacks, and students are either not aware of the vulnerabilities, or are not adequately educated how to protect their scripts.

They topics they look at are SQL injections, XSS attacks, CSRF attacks, and PHP variable insertion. They talk talk about one of the best things you can do to help secure your site and its data - input filtering.

If you've been paying attention at all to the buzz in the PHP community lately, you'll know that articles like this are nothing new. These are the same things other developers are commenting on as well. It is good to see it get more exposure via digg though...

1 comment voice your opinion now!
basic security xss csrf attack injection sql input filter basic security xss csrf attack injection sql input filter


blog comments powered by Disqus

Similar Posts

DevShed: Am Introduction to PHP Security

Fabien Potencier's Blog: What is Dependency Injection?

Pádraic Brady's Blog: Automatic Output Escaping In PHP & The Real Future Of Preventing XSS

Raphael Stolt's Blog: Transforming data centered XML into SQL statements

Christopher Jones' Blog: Statement caching bug fix to improve performance of OCI8 extension


Community Events





Don't see your event here?
Let us know!


podcast release api interview framework introduction conference symfony voicesoftheelephpant community deployment zendserver list series laravel bugfix language tips developer library

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework