Re: Securing PHP or finding PHP alternatives
On Fri, Jul 07, 2006 at 08:48:20PM -0600, Gezim Hoxha wrote:
> 1.) If I have to write PHP, how do I write secure PHP?
There was a nice whitepaper "Study in Scarlet":
http://www.securereality.com.au/studyinscarlet.txt
and quite a few other articles, you can google up links
to it to find at least one more in bugtraq archive.
PS: I tend to use Ruby and either way check the trail of
products, libraries and frameworks that are considered
for deployment. As once mentioned, among PHP apps of
significant complexity (e.g. CMS), TYPO3 has given me
way less grief than any of *nukes, Mambo, Drupal, e107,
TikiWiki, phpbb2, WordPress...
--
---- WBR, Michael Shigorin <mike@xxxxxxxxxxx>
------ Linux.Kiev http://www.linux.kiev.ua/