, 2007-02-05
Stefan Esser is the founder of both the Hardened-PHP Project and the PHP Security Response Team (which he recently left). Federico Biancuzzi discussed with him how the PHP Security Response Team works, why he resigned from it, what features he plans to add to his own hardening patch, the interaction between Apache and PHP, the upcoming "Month of PHP bugs" initiative, and common mistakes in the design of well-known applications such as WordPress.
Expand all |
Post comment
Blame others, hype yourself
2007-02-08
Sebs (2 replies)
Sebs (2 replies)
Re: Blame others, hype yourself
2007-02-08
Anonymous (1 replies)
Anonymous (1 replies)
Stefan was apparently unable to convince the PHP devs to do anything when he was one of them so really this seems his only option. It shows his dedication to the language to continue to care and attempt to better it.
Sometimes the only way to get someone's attention is to shove their nose in their shit. Tends to get them to notice. MoAB seemed to get Apple off their security high horse and they patched some bugs they ignored before. I can only hope the PHP devs will have half the sense Apple did in how they respond to this.
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/columns/432/34374#34374