PHP - best way?
On Tuesday, May 27, 2014, Doran Barton wrote: > Don't use PHP. ;-) Very funny. I actually don't appreciate digs like that. PHP may not be the best language out there, but it's a good one just the same. And it's one that was easy for me to learn! I tried looking into Java once. I was lost after twenty minutes. Maybe someday I'll look at it again, but as it stands, PHP is the best out there for me. I could do this site in Python I suppose, but that's about the only other language I'd use. Don't even get me started on Ruby. I know some people love it, but every time I looked at it I just wanted to scream "IT'S UGLY! IT MAKS NO SENSE TO ME!" I'll take PHP over Ruby in a microsecond! Besides, I don't know Python or anything else, and can't get any books on them to learn them. So it's PHP or a Bash script. Take your pick. Of the two, I think PHP is the far better choice. :) Now if you have a web site that will take you through the process of building a site in Python (as well as other things, since Python happens to be a very popular scripting language even at the command line) then I'll happily take a look at it. But for the moment, this site design is PHP. I've already put in many hours of work getting it to where it is now. It's perfectly functional, and does exactly what I want it to do. But it's not hardened against attacks. Hense the original post of my thread. I'm looking for sites that give good details on properly sanitizing a site against attacks, and has things that can be directly used in PHP. It's all well and good to say "Do this, and do that" but considering that I've not used PHP (or HTML for that matter) since version 4 (of each), I'm not likely to understand HOW to do this and not that unless it's illustrated on the page. I am most definetly behind the curve. --- Dan On Thu, May 29, 2014 at 3:32 AM, Steve Meyers <[email protected]> wrote: > On 05/28/2014 10:57 AM, Levi Pearson wrote: > >> I'm not seeing anything here that fundamentally disagrees with your >> quote of Stuart. PHP started out extremely brain-damaged and reached >> the height of its popularity in that state. A whole lot of really bad >> code was written and a whole lot of people learned it as their first >> exposure to programming. It remains backward-compatible with all >> that, and a lot of people who had no idea what they were doing but >> managed to slap some pages together and get paid for it are happy to >> share how they did it. There are sensible alternatives available now >> in PHP to people who know how to recognize them, but it's not an >> environment I'd recommend a novice wade into unprepared, especially >> since there are very nice ways to build web services in other >> languages without all the baggage. >> > > I'm not disagreeing with the gist of his message. I'm just saying that > there are a lot better examples than addslashes(), which actually made a > little bit of sense. > > Steve > > > /* > PLUG: http://plug.org, #utah on irc.freenode.net > Unsubscribe: http://plug.org/mailman/options/plug > Don't fear the penguin. > */ > /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
