PHP Security
| Recommend this page to a friend! |  Stumble It! |
 Bookmark in del.icio.us |
Detection and prevention of security attacks
 All package blogs |
PHP Classes blog |
PHP Security |
   |
 Post article |
||||||
175. Another Serious Security Bug on PHP 5.3.9
Posted on: 2012-02-03
PHP 5.3.9 release was mostly meant to fix a security bug, but it introduced a new more serious bug. PHP 5.3.10 was just released to fix this issue.
Meanwhile Debian Linux maintainers decided to stop enabling the Suhosin extension by default. This extension is used by several Linux distributions to provide protection against present and future security bugs of PHP.
Read this article to learn more about the just fixed bug what you should do to avoid these security issues. You can also learn more what is the current PHP security status and the importance of the Suhosin extension to prevent PHP security problems.
More ... 
Post a comment 
See comments (21) Trackbacks (0)
Meanwhile Debian Linux maintainers decided to stop enabling the Suhosin extension by default. This extension is used by several Linux distributions to provide protection against present and future security bugs of PHP.
Read this article to learn more about the just fixed bug what you should do to avoid these security issues. You can also learn more what is the current PHP security status and the importance of the Suhosin extension to prevent PHP security problems.
More ... Post a comment See comments (21) Trackbacks (0)171. PHP Vulnerability May Halt Millions of Servers
Posted on: 2012-01-12
A security vulnerability found in PHP and many other programming languages may allow attackers to halt servers with vulnerable PHP installations.
Read this article to learn more about this vulnerability and what you can do to avoid that your servers running PHP may be brought down due to this problem.
More ... Post a comment See comments (14) Trackbacks (0)
Read this article to learn more about this vulnerability and what you can do to avoid that your servers running PHP may be brought down due to this problem.
More ... Post a comment See comments (14) Trackbacks (0)127. Single Sign-On authentication using OpenID and other security measures
Posted on: 2010-08-13
The authentication of the PHPClasses site users will be changed to work in a separate site. It will use the OpenID protocol, so you do not have to create a new account to access other sites.
This article explains better what this means in practice and how it will affect the site users.
Several new measures were implemented to provide better security to protect user accounts and prevent eventual security exploits. Advice is provided to PHP developers in order to apply similar measures to take better care of the security of their sites.
More ... Post a comment See comments (7) Trackbacks (0)
This article explains better what this means in practice and how it will affect the site users.
Several new measures were implemented to provide better security to protect user accounts and prevent eventual security exploits. Advice is provided to PHP developers in order to apply similar measures to take better care of the security of their sites.
More ... Post a comment See comments (7) Trackbacks (0)98. HTML 5 for a better Web
Posted on: 2009-07-06
The HTML 5 will definitely contribute to a better Web. Despite its specification is still being drafted, several browsers like Firefox 3.5, Internet Explorer 8, Safari 4, Chrome 2 and Opera 10 already implement a significant part of the current HTML 5 specification.
This article reviews a bit of the history of how we got to HTML 5 and presents an overview of the enhancements that HTML 5 introduces to provide a better Web.
It also presents a reflection about whether HTML 5 will render useless browser extensions like Flash, Silverlight and Java.
More ... Post a comment See comments (18) Trackbacks (4)
This article reviews a bit of the history of how we got to HTML 5 and presents an overview of the enhancements that HTML 5 introduces to provide a better Web.
It also presents a reflection about whether HTML 5 will render useless browser extensions like Flash, Silverlight and Java.
More ... Post a comment See comments (18) Trackbacks (4)87. 10 steps to migrate Web site servers with the least of problems
Posted on: 2009-01-30
Sometimes you need to migrate a site between two servers. This article provides advice about which steps a server migration procedure should follow to prevent the problems that may happen.
More ... Post a comment See comments (8) Trackbacks (2)
More ... Post a comment See comments (8) Trackbacks (2)67. PHP security exploit with GIF images
Posted on: 2007-06-20
This post talks about a PHP security exploit that can be performed using specially crafted GIF images that embed malicious PHP code. Advice is given on what to do and to not do to avoid the problem.
More ... Post a comment See comments (26) Trackbacks (13)
More ... Post a comment See comments (26) Trackbacks (13)65. 8 defensive programming best practices to prevent breaking your sites
Posted on: 2007-04-25
This article describes software development practices that have been used to prevent problems that can break Web sites.
This message also explains recent changes that were made to the site newsletter user options to reduce the site bandwidth usage to keep the hosting costs on budget.
More ... Post a comment See comments (11) Trackbacks (15)
This message also explains recent changes that were made to the site newsletter user options to reduce the site bandwidth usage to keep the hosting costs on budget.
More ... Post a comment See comments (11) Trackbacks (15)55. Improved browsing and cross site scripting prevention
Posted on: 2006-06-28
This post announces several improvements on the way of viewing the files of the packages available on the site.
An extensive explanation is provided about the security concerns of presenting content from untrusted sources, specifically those that may lead to security abuses known as cross-site scripting.
Several solutions to prevent cross-site script exploits are presented. A solution named "safe domain" used by the site, that is not very well known, is presented in detail.
More ... Post a comment See comments (7) Trackbacks (1)
An extensive explanation is provided about the security concerns of presenting content from untrusted sources, specifically those that may lead to security abuses known as cross-site scripting.
Several solutions to prevent cross-site script exploits are presented. A solution named "safe domain" used by the site, that is not very well known, is presented in detail.
More ... Post a comment See comments (7) Trackbacks (1)26. Security vulnerabilities, site tips and PHP-Con US conference
Posted on: 2003-07-24
Security issues have always been a major concern for those that are responsible for Web sites. Every day, security experts discover new vulnerabilities in computer programs that many of us use in our Web sites.
That would not be a problem if such experts would not use the knowledge about those vulnerabilities to compromise our systems and cause any harm.
More ... Post a comment See comments (0) Trackbacks (0)
That would not be a problem if such experts would not use the knowledge about those vulnerabilities to compromise our systems and cause any harm.
More ... Post a comment See comments (0) Trackbacks (0)All post categories
Interviews (21)
New site features (47)
News (6)
PHP community (25)
PHP Innovation Award (10)
PHP opinions (13)
PHP Performance (18)
PHP Security (9)
PHP Tutorials (25)
PHP User Groups (8)
Web site design (9)
| All package blogs |
PHP Classes blog |
PHP Security |
|
Post article |
||||||
For more information send a message to :
info at phpclasses dot org.
info at phpclasses dot org.
| Copyright (c) Icontem 1999-2012 | PHP Classes | - PHP Class Scripts |
| PHP Book Reviews | - Reviews of books and other products |