Oreilly Essential Php Security

Being highly flexible in building dynamic, database-driven web applications makes the PHP programming language one of the most popular web development tools in use today. It also works beautifully with other open source tools, such as the MySQL database and the Apache web server. However, as more web sites are developed in PHP, they become targets for malicious attackers, and developers need to prepare for the attacks. Security is an issue that demands attention, given the growing frequency of attacks on web sites. "Essential PHP Security" explains the most common types of attacks and how to write code that isn't susceptible to them. By examining specific attacks and the techniques used to protect against them, you will have a deeper understanding and appreciation of the safeguards you are about to learn in this book. In the much-needed (and highly-requested) "Essential PHP Security," each chapter covers an aspect of a web application (such as form processing, database programming, session management, and authentication). Chapters describe potential attacks with examples and then explain techniques to help you prevent those attacks. Topics covered include: Preventing cross-site scripting (XSS) vulnerabilities Protecting against SQL injection attacks Complicating session hijacking attempts You are in good hands with author Chris Shiflett, an internationally-recognized expert in the field of PHP security. Shiflett is also the founder and President of Brain Bulb, a PHP consultancy that offers a variety of services to clients around the world. Highly flexible in building dynamic, database-driven web applications, the PHP programming language is one of the most popular web-development tools in use today. It also works beautifully with other open source tools, such as the MySQL database and the Apache web server. However, as more web sites are developed in PHP, they inevitably become targets for malicious attackers. Developers need to prepare for this; security is an issue that demands attention.The much-needed (and highly requested) Essential PHP Security explains the most common types of attacks and how to write code that can withstand such attacks. By examining specific attacks and the techniques used to protect against them, you will have a deeper understanding and appreciation of the safeguards you are about to learn in this book.Each chapter of this book covers an aspect of a web application (such as form processing, database programming, session management, and authentication). The chapters provide examples of potential attacks and then explain techniques to help you prevent those attacks. You are in good hands with author Chris Shiflett, an internationally recognized expert in the field of PHP security. Shiflett is also the founder and president of Brain Bulb, a PHP consultancy that offers a variety of services to clients around the world. This book is for web developers looking to expand their knowledge of creating secure php code, it explains the techniques sometimes used by hackers to gain entry into your website and also explains how to prevent or reduce the chances of those issue occurring to you.