Has been around for quite a while and pretty much all the points are address right in the PHP documentation at http://php.net/security which is a much more informed source to study. The guy who wrote that scarlet report only had a very thin grasp of the concepts.
-Rasmus On Fri, 26 Oct 2001, Joseph Blythe wrote: > just stummbled across this great study by Shaun Clowes on php security, this > is just the kind of information I have been looking for, thought others > could also benefit from it. > > http://www.securereality.com.au/studyinscarlet.txt > > found during google search: PHP Security > > cheers, > > joseph > > > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]