PHP Security Briefing
 | Name : PHP Security Briefing File Type : Size : 224 KB |
PHP Security Briefing Chris Shiflett Brain Bulb The PHP Consultancy chris@brainbulb.com Who Am I? (Why Listen to Me?) Author of Essential PHP Security (OReilly) and HTTP Developers Handbook (Sams) Author of Security Corner (php|architect) and Guru Speak (PHP Magazine) Founder of PHP Security Consortium Member of Zend Advisory Board and an author of the Zend PHP Certification Founder and President of Brain Bulb, The PHP Consultancy Talk Outline Two Best Programming Practices Two Most Common Vulnerabilities Lightning Attacks More Information Questions and Answers Two Best Practices (The Least You Can Do) Filter Input Escape Output Two Best Practices Two Best Practices Two Best Practices Two Best Practices Two Best Practices Filter Input: What Is Input? Most input is obvious - form data ($_GET and $_POST), cookies ($_COOKIE), RSS feeds, etc. Some data is harder to identify - $_SERVER, data from databases, etc. Some data is frequently misunderstood $_SESSION, etc. The key is to identify the origin of data. If it originates from any remote source, it is input Ebook Relate: practices ebook security ebook input ebook author ebook identify ebook two best ebook best practices ebook php security ebook etc some ebook two best practices ebook etc some data ebook |
| Server | Status |
| brainbulb.com | Alive |
