Pro PHP security : from application security principles to the implementation of XSS defenses / Chris Snyder, Thomas Myer, Michael Southwell.

Format:

Book

Author/Creator:

Snyder, Chris (Christopher H.)

Contributor:

Myer, Tom.

Southwell, Michael G.

Series:

The expert's voice in open source Pro PHP security

Language:

English

Subjects (All):

PHP (Computer program language)--Handbooks, manuals, etc.

Web site development--Security measures--Handbooks, manuals, etc.

Web sites--Security measures--Handbooks, manuals, etc.

Physical Description:

1 online resource (350 p.)

Edition:

2nd ed.

Place of Publication:

[Berkeley, Calif.] : Apress ; New York : Distributed to the book trade worldwide by Springer Science+Business Media, c2010.

Language Note:

English

System Details:

text file

Summary:

Provides information on securing PHP applications, covering such topics as SQL injection, XSS, remote execution, temporary files, REST services, CAPTCHAs, identity verification, and versioning.

Contents:

Why is secure programming a concern?

Validating and sanitizing user input

Preventing SQL injection

Preventing cross-site scripting

Preventing remote execution

Enforcing security for temporary files

Preventing session hijacking

Securing REST services

Using CAPTCHAs

User authentication, authorization, and logging

Preventing data loss

Safe execution of system and remote procedure calls

Securing Unix

Securing your database

Using encryption

Securing network connections : SSL and SSH

Final recommendations.

Notes:

Includes index.

"Use PHP 5.3 to solve classic and modern day security concerns, from SQL injection to mobile security"--P. [1] of cover.

ISBN:

9781430233190

1430233192

OCLC:

709782731