News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Zend Developer Zone:
Two Security Tips - Naming Scheme & Input Filtering
March 08, 2007 @ 09:26:00

The Zend Developer Zone has posted two more handy security tips - one concerning file/directory naming and the other about input validation.

From the first tip:

Don't rely on obscure names to keep your application safe. You should always check permissions, test for vulnerabilities with testing tools and keep an eye on your log files for suspicious activity. When designing your applications and web sites though, don't make it easy for bad people to do bad things. Don't use default or common names for your files and directories.

And from the second:

It's a sad fact of life but users are evil. Users want nothing more than to find a way to exploit your application. As soon as you let your guard down and start thinking "I'm only selling small stuffed animals so how evil can my users really be?" you've lost the battle.

You can catch up on these and the other previous security tips on this page on the Zend Developer Zone website.

0 comments voice your opinion now!
securitytips naming scheme file directory input filtering securitytips naming scheme file directory input filtering


blog comments powered by Disqus

Similar Posts

Danne Lundqvist's Blog: Setting up a development environment with apache-2.2.6

Dotvoid.com: PHP 5.2 ajaxified

Phil Sturgeon: CurlFile and the Facebook SDK in PHP 5.5

Paul Jones' Blog: Quick Hits: New Solar Blog Entries

FrSIRT Advisory: P-News Arbitrary PHP File Upload and Remote Information Disclosure Vulnerabilities


Community Events

Don't see your event here?
Let us know!


release library api voicesoftheelephpant install introduction laravel5 podcast laravel php7 xdebug language extension unittest interview opinion series example community framework

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework