PHP Security Guide - Best Security Tips offers daily news, information, advices and tips about spyware, adware, viruses, trojans, web vulnerabilities, hackers, other threats    | Register now | Login
   
HOME TIPS NEWS TOOLS DOWNLOADS VIRUS & SPYWARE FORUM BOOKS FREE MAGAZINES & PAPERS
GFI LANguard Network Security Scanner - Dld 30-day trial! del.icio.us  digg  Furl  NewsVine  Spurl  Blinklist  Ma.gnolia  Reddit  Tailrank  YahooMyWeb 
Best Tips
Instant Messaging Attack...
Web Application Firewall...
Security Checklist by Cy...
What is a fraud alert?
How Identity Theft Can A...
New Training Course On F...
Network Auditing and Mon...
Your Kid Online - A Few ...
What does anti-virus sof...
What do firewalls do?
Security Scanner
Security Categories
 1. Adware/Spyware
 2. Antivirus
 3. Firewall
 4. Phishing
 5. Linux Security
 6. Windows Security
 7. Security Incidents
 8. Web Security
 9. P2P Security
Advertise With Us!
Latest Viruses / Threats
Troj/FakeAV-AM
2008/7/19 15:00:08
Bugtraq: [security bulletin] HPSBUX02351 SSRT080058 rev.2 - HP-UX Running BIND, Remote DNS Cache Poisoning
2008/7/19 14:30:14
Bugtraq: rPSA-2008-0231-1 bind bind-utils
2008/7/19 14:30:14
Bugtraq: Oracle Database Local Untrusted Library Path Vulnerability
2008/7/19 14:30:14
Bugtraq: RE: Windows Vista Power Management & Local Security Policy
2008/7/19 14:30:14
Downloads
 0.Fx MPEG Suite
 1.Daniusoft Video to MP4 Converter
 2.iProtectYou
 3.Deep Ball Defender
 4.Amazing Parrots Screensaver
 5.FlashCam Rebroadcasting server
 6.MysqlDataBackupTool
 7.Photo-Paint 9 script converter
 8.Fast PDF converter
 9.Apex iPod Video Converter Home Edition
Security News
Sourcefire Protects ...
Microsoft to Release...
Comscore is Research...
Social Security to R...
MySpace Phishing Use...
Turkish and Swedish ...
Phishing for Califor...
Upgrade your Firefox...
Vista Security Broke...
Report: caching serv...
RSS / Atom Feeds
Web Application Security: PHP Security Guide  
Author: Max : 2006/12/11 Printer Friendly Page Tell a Friend
PHP Security Guide 
The http://phpsec.org team has put together an excellent guide on how to secure PHP web applications . The guide addresses the top most critical PHP induced threats and risks and it presents detailed instructions on how to mitigate these risks.
Table of Contents
1. Overview
1.1 What Is Security?
1.2 Basic Steps
1.3 Register Globals
1.4 Data Filtering
1.4.1 The Dispatch Method
1.4.2 The Include Method
1.4.3 Filtering Examples
1.4.4 Naming Conventions
1.4.5 Timing
1.5 Error Reporting
2. Form Processing
2.1 Spoofed Form Submissions
2.2 Spoofed HTTP Requests
2.3 Cross-Site Scripting
2.4 Cross-Site Request Forgeries
3. Databases and SQL
3.1 Exposed Access Credentials
3.2 SQL Injection
4. Sessions
4.1 Session Fixation
4.2 Session Hijacking
5. Shared Hosts
5.1 Exposed Session Data
5.2 Browsing the Filesystem
6. About
6.1 About This Guide
6.2 About the PHP Security Consortium
6.3 More Information
 

Return to Category | Return To Main Index
Identity Theft Protection Services :
LifeLock Identity Theft Prevention Solution
Veracity Credit Optimization Services
Equifax Credit Watch
 Free Credit Report
Identity Truth
Privacy Matters 123



 

HOME | NEWS | SECURITY BLOG | TOOLS | DOWNLOADS | SECURITY BOOKS | TIPS | SITEMAP | TERMS AND CONDITIONS | INTERNET SECURITY SEARCH ENGINE | ADVERTISE ON THIS SITE | CONTACT
Nov '07 | Dec '07 | Jan '08 | Feb '08 | Mar '08 | Apr '08 | May '08 | Jun '08 
Best Security Downloads offers 4000+ free and free to try security downloads