Securing PHP Web Applications

[Silver]

Securing PHP Web Applications

Securing PHP Web Applications

Summary:
Easy, Powerful Code Security Techniques for Every PHP Developer
Hackers specifically target PHP Web applications. Why? Because they
know many of these apps are written by programmers with little or no
experience or training in software security. Dont be victimized.
Securing PHP Web Applications will help you master the specific
techniques, skills, and best practices you need to write rock-solid
PHP code and harden the PHP software youre already using.

Drawing on
more than fifteen years of experience in Web development, security,
and training, Tricia and William Ballad show how security flaws can
find their way into PHP code, and they identify the most common
security mistakes made by PHP developers. The authors present
practical, specific solutionstechniques that are surprisingly easy
to understand and use, no matter what level of PHP programming
expertise you have. Securing PHP Web Applications covers the most
important aspects of PHP code security, from error handling and
buffer overflows to input validation and filesystem access. The
authors explode the myths that discourage PHP programmers from
attempting to secure their code and teach you how to instinctively
write more secure code without compromising your softwares
performance or your own productivity. Coverage includes Designing
secure applications from the very beginningand plugging holes in
applications you cant rewrite from scratch Defending against session
hijacking, fixation, and poisoning attacks that PHP cant resist on
its own Securing the servers your PHP code runs on, including
specific guidance for Apache, MySQL, IIS/SQL Server, and more
Enforcing strict authentication and making the most of encryption
Preventing dangerous cross-site scripting (XSS) attacks
Systematically testing yourapplications for security, including
detailed discussions of exploit testing and PHP test automation
Addressing known vulnerabilities in the third-party applications
youre already running Tricia and William Ballad demystify PHP
security by presenting realistic scenarios and code examples,
practical checklists, detailed visuals, and more. Whether you write
Web applications professionally or casually, or simply use someone
elses PHP scripts, you need this bookand you need it now, before
the hackers find you!

[عذراً، الروابط تظهر فقط للأعضاء المسجلين. إضغط هنا للتسجيل]