This link has been bookmarked by 151 people . It was first bookmarked on 09 Oct 2008, by M Tschofen.
-
25 Feb 13
-
24 Nov 12
-
This example also shows the use of the
mysql_real_escape_string()function. This function properly scrubs your input so it doesn't include invalid characters. If you've been relying onmagic_quotes_gpc, be forewarned that it is deprecated and will be removed in PHP V6. Avoid relying on it now and write your PHP applications to be secure without it. Also, remember that if you're using an ISP, there's a chance that your it doesn't havemagic_quotes_gpcenabled. -
Cross-Site Request Forgeries (CSRF attacks) are exploits that take advantage of user privileges to carry out an attack. In a CSRF attack, your users can easily become unsuspecting accomplices. Listing 17 provides an example of a page that carries out a certain action. This page looks up user login information from a cookie. As long as the cookie is valid, the Web page processes the request.
-
- Read the developerWorks tutorial "Locking down your PHP applications" to learn the four security rules developers must not violate.
- Read "PHP encryption for the common man" to learn how to secure the data in PHP applications.
- Identify vulnerabilities, assess compliance requirements, and improve the accuracy and reliability of online systems with Rational Web site security and compliance.
- Read the developerWorks tutorial "Locking down your PHP applications" to learn the four security rules developers must not violate.
-
-
21 Nov 12
-
14 Mar 12
-
20 Dec 11
Ethan GardnerSecurity in a PHP application includes remote and local security concerns. Discover the habits PHP developers should get into to implement Web applications that have both characteristics.
-
28 Sep 11
-
01 Sep 11
-
04 May 11
-
03 Apr 11
-
22 Mar 11
-
08 Mar 11
-
24 Feb 11
-
02 Dec 10
-
13 Nov 10
-
08 Sep 10
Engelbert Tejedakwd:{computers,lang,web,security,php
-
19 Aug 10
-
09 Jul 10
-
03 Jul 10
-
21 May 10
-
22 Oct 09
-
30 Sep 09
-
27 Sep 09
-
25 Aug 09
-
22 Aug 09
-
15 Aug 09
-
20 Jun 09
-
23 Apr 09
-
14 Jan 09
-
02 Jan 09
Robert WallaceSecurity in a PHP application includes remote and local security concerns. Discover the habits PHP developers should get into to implement Web applications that have both characteristics.
-
11 Dec 08
Galuh UtamaSecurity in a PHP application includes remote and local security concerns. Discover the habits PHP developers should get into to implement Web applications that have both characteristics.
imported php security programming webdev tips tutorial webdesign
-
01 Dec 08
-
26 Nov 08
-
Seven habits for writing secure PHP applications
-
-
07 Nov 08
-
30 Oct 08
-
25 Oct 08
-
21 Oct 08
-
19 Oct 08
-
17 Oct 08
-
16 Oct 08
-
John MitchellSecurity in a PHP application includes remote and local security concerns. Discover the habits PHP developers should get into to implement Web applications that have both characteristics.
php programming webdev for:vsym for:jfouse security XSS sqlinjection tutorial CSRF delicious
-
14 Oct 08
-
12 Oct 08
-
11 Oct 08
-
10 Oct 08
-
Alireza Sarabchi* Validate input
* Guard your file system
* Guard your database
* Guard your session data
* Guard against Cross-Site Scripting (XSS) vulnerabilities
* Verify form posts
* Protect against Cross-Site Request Forgeries (CSRF) -
09 Oct 08
-
danielgianni7 hábitos para escrever aplicações PHP seguras
-
Chief Najewiczgood review for whenver i start writing PHP again :teal:
-
-
07 Oct 08
-
06 Oct 08
-
04 Oct 08
-
03 Oct 08
Would you like to comment?
Join Diigo for a free account, or sign in if you are already a member.