Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
PHP Security From The Inside
Federico Biancuzzi, 2007-02-05

Stefan Esser is the founder of both the Hardened-PHP Project and the PHP Security Response Team (which he recently left). Federico Biancuzzi discussed with him how the PHP Security Response Team works, why he resigned from it, what features he plans to add to his own hardening patch, the interaction between Apache and PHP, the upcoming "Month of PHP bugs" initiative, and common mistakes in the design of well-known applications such as WordPress.

Comments Mode:
PHP Security From The Inside 2007-02-05
Anonymous (1 replies)
Re: PHP Security From The Inside 2007-02-07
Lech
PHP Security From The Inside 2007-02-07
PHP Application Dev. (3 replies)
Re: PHP Security From The Inside 2007-02-08
Anonymous
Re: PHP Security From The Inside 2007-02-15
Anonymous
Re: PHP Security From The Inside 2007-02-20
Don Hopkins
Blame others, hype yourself 2007-02-08
Sebs (2 replies)
Re: Blame others, hype yourself 2007-02-08
Anonymous (1 replies)
Re: Re: Blame others, hype yourself 2007-02-15
Anonymous (1 replies)
Re: Re: Re: Blame others, hype yourself 2007-02-20
Don Hopkins
Totally agreed. This "Sebs" guy is an archetypal example of an ignorant PHP fan-boy who's doing more harm to PHP by trying to sweep its problems under the rug, by criticising somebody who's actually trying to do something about solving the problem. Thank you Sebs for stepping up to the plate and demonstrating what the real cause of the problem is: people with your attitude. Now shut up and stop evangelizing PHP until ALL the bugs are fixed.

-Don


[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/432/34372#34372
Re: Blame others, hype yourself 2007-02-13
Anonymous
PHP Security From The Inside 2007-02-20
brokenToy
This is highly irresponsible 2007-02-20
Paul Hickman (2 replies)
Re: This is highly irresponsible 2007-02-20
Mark Zein
Re: This is highly irresponsible 2007-02-20
John Carmichael (1 replies)
Re: Re: This is highly irresponsible 2007-02-21
Anonymous (1 replies)
Re: Re: Re: This is highly irresponsible 2007-02-22
Anonymous
PHP Security From The Inside 2007-08-13
Anonymous







 

Privacy Statement
Copyright 2007, SecurityFocus