security

Secure code: Understanding PHP vulnerabilities

Submitted by John Locke on Sat, 01/12/2008 - 04:53

There are many articles that cover PHP vulnerabilities, but I've run across a lot of programmers and code that seems oblivious to them. When interviewing programmers, I look for an understanding of these types of vulnerabilities, and how to prevent their programs from being vulnerable to them.

Aside from register globals issues, most of these attacks are not specific to PHP.

Register Globals issues
From early on, the developers of PHP had this great idea: accept any parameters passed from the browser, and automatically turn them into variables available in the code.

Syndicate content

Freelock Blog Posts

more

Customer Feedback

If you are a user of business software and are interested in finding out more about open source options for your business or office, you may be a little bit frustrated about the lack of introductory-level information on this topic...

The best single source of such information that I have found so far is John Locke's "Open Source Solutions for Small Business Problems." It provides an excellent introduction to the concepts, advantages, and disadvantages behind open-source.

Julius Walczynski
Sourcio user review

About Freelock

We are located in the Fremont neighborhood of Seattle, WA. 3800 Woodland Park Ave. N. Seattle, WA 98103  USA [P] 206.577.0540 Contact Us | Site Map Get Updates ©1995-2011 Freelock Computing