Discuss: PHP Security - Securing the environment
by Nilesh Chaudhari, CISSP
Discussion is open —
there are 2 reader comments.
Add yours.
1. Laurent | 11 Feb 2006 4:23 PM
Great article. To be performed when your OS, SQL DB and Apache server are hardened.
2. kumar chetan | 03 Feb 2007 1:14 PM
First of all congrats, I rarely see some Indian concerned about LAMP or Open Source product. Second thing you are not only concerned but have tried to address an issue. I have been developing web applications for last 7 years and have seen numerous pitfalls in PHP but then I realised that these are not problems with PHP its the way you try to develop your application. For e.g. Global variables. I find no reason to use Globals the way every one else does and that makes my application bit strong. It is as I pointed out your design that is flawed not the technology. U can use a matchstick to ignite a bonfire or a jungle fire :-)
Again a great article.
Thanks.