I think it was called "Securing Php Applications"
-Original Message-
From: talk-boun...@lists.nyphp.org [mailto:talk-boun...@lists.nyphp.org] On
Behalf Of Chris Shiflett
Sent: Monday, January 26, 2009 3:39 PM
To: NYPHP Talk
Subject: Re: [nyphp-talk] Php off root
Hi Michele,
&
Hi Michele,
Anyway, I picked up Chris Shiftlett's book "Essential Handbook on Php
Security". Nestled in the 100 page book was don't keep php in
webroot.
I hope you enjoy the book. :-)
The recommendation you're referring to is probably to reduce risk
wherever possible. For resources that
Michele,
I'm happy you found your way!
-- Elijah
On Mon, Jan 26, 2009 at 12:22 PM, Ajai Khattri wrote:
> On Mon, 26 Jan 2009, Michele Waldman wrote:
>
> > So, anyway for anyone that I caused concern for the solution for me is
> keep
> > code off webroot and in webroot just include those file.
On Mon, 26 Jan 2009, Michele Waldman wrote:
> So, anyway for anyone that I caused concern for the solution for me is keep
> code off webroot and in webroot just include those file. Worries over. Bad
> sys admin or no.
Yeah, generally code that doesn't need to be opened in a browser, doesn't
ne
Guys,
I posted a while back about php dumping to the screen for God knows what
reason, the sys admin or something.
Anyway, I picked up Chris Shiftlett's book "Essential Handbook on Php
Security". Nestled in the 100 page book was don't keep php in webroot.
I can't remember the reason for that
