1 option
Essential PHP security / Chris Shiflett.
- Format:
- Book
- Author/Creator:
- Shiflett, Chris.
- Language:
- English
- Subjects (All):
- PHP (Computer program language).
- Web sites--Security measures.
- Web sites.
- Physical Description:
- 1 online resource (126 p.)
- Edition:
- 1st edition
- Place of Publication:
- Beijing ; Sebastopol, California : O'Reilly, 2006.
- Language Note:
- English
- System Details:
- text file
- Summary:
- Being highly flexible in building dynamic, database-driven web applications makes the PHP programming language one of the most popular web development tools in use today. It also works beautifully with other open source tools, such as the MySQL database and the Apache web server. However, as more web sites are developed in PHP, they become targets for malicious attackers, and developers need to prepare for the attacks. Security is an issue that demands attention, given the growing frequency of attacks on web sites. Essential PHP Security explains the most common types of a
- Contents:
- Table of Contents; Foreword; Preface; What's Inside; Style Conventions; Comments and Questions; Safari Enabled; Acknowledgments; Introduction; PHP Features; Register Globals; Error Reporting; Principles; Defense in Depth; Least Privilege; Simple Is Beautiful; Minimize Exposure; Practices; Balance Risk and Usability; Track Data; Filter Input; Escape Output; Forms and URLs; Forms and Data; Semantic URL Attacks; File Upload Attacks; Cross-Site Scripting; Cross-Site Request Forgeries; Spoofed Form Submissions; Spoofed HTTP Requests; Databases and SQL; Exposed Access Credentials; SQL Injection
- Exposed DataSessions and Cookies; Cookie Theft; Exposed Session Data; Session Fixation; Session Hijacking; Includes; Exposed Source Code; Backdoor URLs; Filename Manipulation; Code Injection; Files and Commands; Traversing the Filesystem; Remote File Risks; Command Injection; Authentication and Authorization; Brute Force Attacks; Password Sniffing; Replay Attacks; Persistent Logins; Shared Hosting; Exposed Source Code; Exposed Session Data; Session Injection; Filesystem Browsing; Safe Mode; Configuration Directives; allow_url_fopen; disable_functions; display_errors; enable_dl
- error_reportingfile_uploads; log_errors; magic_quotes_gpc; memory_limit; open_basedir; register_globals; safe_mode; Functions; eval(); exec(); file(); file_get_contents(); fopen(); include; passthru(); phpinfo(); popen(); preg_replace(); proc_open(); readfile(); require; shell_exec(); system(); Cryptography; Storing Passwords; Using mcrypt; Storing Credit Card Numbers; Encrypting Session Data; Index
- Notes:
- Includes index.
- Description based on print version record.
- ISBN:
- 9780596552671
- 059655267X
- 9781306816328
- 1306816327
- 9780596522421
- 0596522428
The Penn Libraries is committed to describing library materials using current, accurate, and responsible language. If you discover outdated or inaccurate language, please fill out this feedback form to report it and suggest alternative language.