Pro PHP Security

Overview

Pro PHP Security is one of the first books devoted solely to PHP security. It will serve as your complete guide for taking defensive and proactive security measures within your PHP applications.The methods discussed are compatible with PHP versions 3, 4, and 5.

The knowledge you’ll gain from this comprehensive guide will help you prevent attackers from potentially disrupting site operation or destroying data. And you’ll learn about various security measures, for example, ...

See more details below
Paperback
$33.45
BN.com price
(Save 25%)$44.99 List Price
Other sellers (Paperback)
  • All (16) from $2.35   
  • New (3) from $28.37   
  • Used (13) from $2.35   
Sending request ...

Overview

Pro PHP Security is one of the first books devoted solely to PHP security. It will serve as your complete guide for taking defensive and proactive security measures within your PHP applications.The methods discussed are compatible with PHP versions 3, 4, and 5.

The knowledge you’ll gain from this comprehensive guide will help you prevent attackers from potentially disrupting site operation or destroying data. And you’ll learn about various security measures, for example, creating and deploying "captchas," validating e-mail, fending off SQL injection attacks, and preventing cross-site scripting attempts.

Read More Show Less

Product Details

  • ISBN-13: 9781590595084
  • Publisher: Apress
  • Publication date: 9/8/2005
  • Edition number: 1
  • Pages: 528
  • Product dimensions: 9.25 (w) x 7.50 (h) x 1.07 (d)

Meet the Author

Chris Snyder is a software engineer at the Fund for the City of New York, where he helps develop next-generation websites and services for nonprofit organizations. He is a member of the executive board of New York PHP, and has been looking for new ways to build scriptable, linked, multimedia content since he saw his first Hypercard stack in 1988.
Read More Show Less

Table of Contents

Pt. 1 The importance of security
Ch. 1 Why is secure programming a concern? 3
Pt. 2 Maintaining a secure environment
Ch. 2 Dealing with shared hosts 13
Ch. 3 Maintaining separate development and production environments 25
Ch. 4 Keeping software up to date 41
Ch. 5 Using encryption I : theory 55
Ch. 6 Using encryption II : practice 75
Ch. 7 Securing network connections I : SSL 109
Ch. 8 Securing network connections II : SSH 139
Ch. 9 Controlling access I : authentication 175
Ch. 10 Controlling access II : permissions and restrictions 209
Pt. 3 Practicing secure PHP programming
Ch. 11 Validating user input 229
Ch. 12 Preventing SQL injection 249
Ch. 13 Preventing cross-site scripting 263
Ch. 14 Preventing remote execution 281
Ch. 15 Enforcing security for temporary files 303
Ch. 16 Preventing session hijacking 315
Pt. 4 Practicing secure operations
Ch. 17 Allowing only human users 331
Ch. 18 Verifying your users' identities 347
Ch. 19 Using roles to authorize actions 359
Ch. 20 Adding accountability to track your users 377
Ch. 21 Preventing data loss 399
Ch. 22 Safely executing system commands 419
Ch. 23 Handling remote procedure calls safely 455
Ch. 24 Taking advantage of peer review 467
Read More Show Less

Customer Reviews

Be the first to write a review
( 0 )
Rating Distribution

5 Star

(0)

4 Star

(0)

3 Star

(0)

2 Star

(0)

1 Star

(0)

Your Rating:

Your Name: Create a Pen Name or

Barnes & Noble.com Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & Noble.com that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & Noble.com does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at BN.com or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation

Reminder:

  • - By submitting a review, you grant to Barnes & Noble.com and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Noble.com Terms of Use.
  • - Barnes & Noble.com reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & Noble.com also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identity on BN.com. It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

 
Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously

    If you find inappropriate content, please report it to Barnes & Noble
    Why is this product inappropriate?
    Comments (optional)