News Feed
Jobs Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

DevShed:
Sessions and Cookies
June 07, 2007 @ 13:15:43

DevShed has a new book excerpt from a good standby security resource from O'Reilly - Chris Shiflett's "Essential PHP Security". This time, they focus on the chapter talking about sessions and cookie security.

This chapter discusses sessions and the inherent risks associated with stateful web applications. You will first learn the fundamentals of state, cookies, and sessions; then I will discuss several concerns - cookie theft, exposed session data, session fixation, and session hijacking-along with practices that you can employ to help prevent them.

The chapter talks about how the statelessness of HTTP causes problems, how cookies can be stolen because of it and what kinds of things you can do to keep you and your users safe (like session fixation).

0 comments voice your opinion now!
session cookie security oreilly book excerpt session cookie security oreilly book excerpt


blog comments powered by Disqus

Similar Posts

Oracle Technology Network: The Underground PHP Oracle Manual is Here

Zend Developer Zone: The ZendCon Sessions Episode 7: High Performance PHP & MySQL Scaling Techniques

International PHP Magazine: Poll Question: What Do You Look for in Frameworks?

Raphael Stolt's Blog: Zend Framework in Action Pre-review

Tobias Schlitt's Blog: My first book! (The eZ Components Developers Handbook)


Community Events











Don't see your event here?
Let us know!


package performance component introduction hhvm example podcast install unittest composer database symfony2 hack project release language facebook framework security application

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework