Jump to content

Good security book / articles

nvee

By nvee
in Miscellaneous

 Share

Recommended Posts

nvee Member

nvee

Posted
Posted

Hi there,

 

Im not sure if this is the correct place to post this ... :)

 

I am looking for a good PHP security book / Article - I see there is one on PHPFREAKS tutorials, but as a beginner, I would like to go through as much security related information as possible. Does anyone have a good article/ebook/book which you can advise me to read/get?

 

 

Link to comment
Share on other sites
xylex Newbie

xylex

Posted
Posted

Chris Shiflett's Essential PHP Security is a book that comes up a lot.  Though it doesn't really cover file uploads or get into anything in depth.  The presentations on PHP.net are also a good resource - http://talks.php.net/index.php/Security

 

A lot of application security design isn't PHP specific, so general internet security resources are good, and even many geared towards a different language than PHP.  And if you want to get really into it, the NIST CSRC has a lot of detailed discussions around security practices - http://csrc.nist.gov/index.html. 

Link to comment
Share on other sites
  • 2 weeks later...
Maq Prolific Member

Maq

Posted
Posted

Chris Shiflett's Essential PHP Security is a book that comes up a lot.  Though it doesn't really cover file uploads or get into anything in depth.  The presentations on PHP.net are also a good resource - http://talks.php.net/index.php/Security

 

A lot of application security design isn't PHP specific, so general internet security resources are good, and even many geared towards a different language than PHP.  And if you want to get really into it, the NIST CSRC has a lot of detailed discussions around security practices - http://csrc.nist.gov/index.html. 

 

Just an FYI, most of the articles/presentations in your first link are out dated and when you click on your second link, it's broken.  It should read - http://csrc.nist.gov/index.html

Link to comment
Share on other sites
Maq Prolific Member

Maq

Posted
Posted

Just an FYI, most of the articles/presentations in your first link are out dated and when you click on your second link, it's broken.  It should read - http://csrc.nist.gov/index.html

 

His link is correct. It's SMF that is parsing the text incorrectly by not figuring out that the ending period part of the sentence and not the URL.

 

Oops  ;)

Link to comment
Share on other sites
This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.