Re: [PHP] Re: PHP: Script Security: Best coding practices
A little off your request, but may be of interest: Top 21 PHP Programming Mistakes from Zend.com http://www.zend.com/zend/art/mistake1.php http://www.zend.com/zend/art/mistake2.php olinux On 07/04/2002 02:24 AM, Jean-Christian Imbeault wrote: I am trying to figure out what are some Bad Things (tm) when it comes to secure PHP programming and how to avoid them. I am looking for a kind of best practices for security list for PHP programming. Do's and Don't, or a list of common pitfalls and how to avoid them. Can anyone point me to such a list or tutorial? __ Do You Yahoo!? Sign up for SBC Yahoo! Dial - First Month Free http://sbc.yahoo.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] Re: PHP: Script Security: Best coding practices
I thought it was a good site. I was reading up on the security bugs found and now I know what not to do. -Original Message- From: Jean-Christian Imbeault [mailto:[EMAIL PROTECTED]] Sent: July 4, 2002 2:41 AM To: [EMAIL PROTECTED] Subject: [PHP] Re: PHP: Script Security: Best coding practices Manuel Lemos wrote: Check out http://www.phpadvisory.com/ . An ok site but only three articles, of which two are on security. One article is too general and the other too specific :) Jc -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Re: PHP: Script Security: Best coding practices
Sp wrote: I thought it was a good site. I was reading up on the security bugs found and now I know what not to do. True. It's just too specific. In order for me to figure out what to do I need to read every advisory to see what it is about and how to prevent against that particular problem. If you have the time it is probably worth reading most of those advisories. But a general list of Do's and Don't would be more handy :) Jc -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php