Pro PHP Security (Google eBook)

Front Cover
Apress, Sep 7, 2005 - Computers - 528 pages
4 Reviews

Pro PHP Security is one of the first books devoted solely to PHP security. It will serve as your complete guide for taking defensive and proactive security measures within your PHP applications. The methods discussed are compatible with PHP versions 3, 4, and 5.

The knowledge you値l gain from this comprehensive guide will help you prevent attackers from potentially disrupting site operation or destroying data. And you値l learn about various security measures, for example, creating and deploying "captchas," validating e-mail, fending off SQL injection attacks, and preventing cross-site scripting attempts.

  

What people are saying - Write a review

User Review - Flag as inappropriate

Couldn't be better! Explanations, with example code, and he goes over everything vaguely enough you can apply it to multiple situations, and yet specific enough you know just what to look for. Wow!

LibraryThing Review

User Review  - wahya - LibraryThing

When you buy this book, you will able to create your own CMS Read full review

Contents

Preventing Remote Execution
281
Enforcing Security for Temporary Files
303
Preventing Session Hijacking
315
Allowing Only Human Users
331
Verifying Your Users Identities
347
Using Roles to Authorize Actions
359
Adding Accountability to Track Your Users
377
Preventing Data Loss
399

Authentication
175
Permissions and Restrictions
209
Validating User Input
229
Preventing SQL Injection
249
Preventing CrossSite Scripting
263
Safely Executing System Commands
419
Handling Remote Procedure Calls Safely
455
Taking Advantage of Peer Review
467
INDEX
479
Copyright

Common terms and phrases

Popular passages

Page 20 - A thorough discussion of this topic is beyond the scope of this chapter.

About the author (2005)

Chris Snyder is a software engineer at the Fund for the City of New York, where he helps develop next-generation websites and services for nonprofit organizations. He is a member of the executive board of New York PHP, and has been looking for new ways to build scriptable, linked, multimedia content since he saw his first Hypercard stack in 1988.

A bio is not available for this author.

Bibliographic information