, 2007-02-05
Stefan Esser is the founder of both the Hardened-PHP Project and the PHP Security Response Team (which he recently left). Federico Biancuzzi discussed with him how the PHP Security Response Team works, why he resigned from it, what features he plans to add to his own hardening patch, the interaction between Apache and PHP, the upcoming "Month of PHP bugs" initiative, and common mistakes in the design of well-known applications such as WordPress.
Expand all |
Post comment
Blame others, hype yourself
2007-02-08
Sebs (2 replies)
Sebs (2 replies)
Re: Blame others, hype yourself
2007-02-08
Anonymous (1 replies)
Anonymous (1 replies)
This is highly irresponsible
2007-02-20
Paul Hickman (2 replies)
Paul Hickman (2 replies)
Re: This is highly irresponsible
2007-02-20
John Carmichael (1 replies)
John Carmichael (1 replies)
Have some perspective! You're blaming the victim here. The cause of the problem is PHP, and the irresponsible idiots on the PHP team, not Stefan. The PHP apologists are the cause of the problem, yet they try to blame the developers, instead of fixing the terrible design flaws in PHP that encourage developers to make mistakes. Stop trying to blame the developers, and stop trying to blame somebody who actually has the guts to stand up and do something about it.
You PHP fan-boys who evangelize PHP to naive developers should shut up, and be ashamed of yourselves, because you're making the problem much worse than Stefan, who's actually fixing bugs instead of recruiting more naive developers and sloppy programmers.
-Don
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/columns/432/34371#34371