Many, if not most, php users are self taught. What's missing in most of the php/mysql/web books is security. Sure there is a chapter on security but precious little in the way of listings which include and discuss security. Hard to learn how to do it right when there are no examples.

Take this article as an example. Where are the citations for "how-to". Same way with the postings which include "my favorite error" but no citations on how to fix the error.

So to avoid my own sin, I'll say a good starting point would be to look at the O'Reilly "Essential PHP Security" and peruse search results from your favorite search engine/

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/427/34250#34250