My Account Log in

1 option

Essential PHP security / Chris Shiflett.

O'Reilly Online Learning: Academic/Public Library Edition Available online

View online
Format:
Book
Author/Creator:
Shiflett, Chris.
Language:
English
Subjects (All):
PHP (Computer program language).
Web sites--Security measures.
Web sites.
Physical Description:
1 online resource (126 p.)
Edition:
1st edition
Place of Publication:
Beijing ; Sebastopol, California : O'Reilly, 2006.
Language Note:
English
System Details:
text file
Summary:
Being highly flexible in building dynamic, database-driven web applications makes the PHP programming language one of the most popular web development tools in use today. It also works beautifully with other open source tools, such as the MySQL database and the Apache web server. However, as more web sites are developed in PHP, they become targets for malicious attackers, and developers need to prepare for the attacks. Security is an issue that demands attention, given the growing frequency of attacks on web sites. Essential PHP Security explains the most common types of a
Contents:
Table of Contents; Foreword; Preface; What's Inside; Style Conventions; Comments and Questions; Safari Enabled; Acknowledgments; Introduction; PHP Features; Register Globals; Error Reporting; Principles; Defense in Depth; Least Privilege; Simple Is Beautiful; Minimize Exposure; Practices; Balance Risk and Usability; Track Data; Filter Input; Escape Output; Forms and URLs; Forms and Data; Semantic URL Attacks; File Upload Attacks; Cross-Site Scripting; Cross-Site Request Forgeries; Spoofed Form Submissions; Spoofed HTTP Requests; Databases and SQL; Exposed Access Credentials; SQL Injection
Exposed DataSessions and Cookies; Cookie Theft; Exposed Session Data; Session Fixation; Session Hijacking; Includes; Exposed Source Code; Backdoor URLs; Filename Manipulation; Code Injection; Files and Commands; Traversing the Filesystem; Remote File Risks; Command Injection; Authentication and Authorization; Brute Force Attacks; Password Sniffing; Replay Attacks; Persistent Logins; Shared Hosting; Exposed Source Code; Exposed Session Data; Session Injection; Filesystem Browsing; Safe Mode; Configuration Directives; allow_url_fopen; disable_functions; display_errors; enable_dl
error_reportingfile_uploads; log_errors; magic_quotes_gpc; memory_limit; open_basedir; register_globals; safe_mode; Functions; eval(); exec(); file(); file_get_contents(); fopen(); include; passthru(); phpinfo(); popen(); preg_replace(); proc_open(); readfile(); require; shell_exec(); system(); Cryptography; Storing Passwords; Using mcrypt; Storing Credit Card Numbers; Encrypting Session Data; Index
Notes:
Includes index.
Description based on print version record.
ISBN:
9780596552671
059655267X
9781306816328
1306816327
9780596522421
0596522428

The Penn Libraries is committed to describing library materials using current, accurate, and responsible language. If you discover outdated or inaccurate language, please fill out this feedback form to report it and suggest alternative language.

Find

Home Release notes

My Account

Shelf Request an item Bookmarks Fines and fees Settings

Guides

Using the Find catalog Using Articles+ Using your account