Essential PHP Security
Writers: EC-Council ., Steven Adair, Heather Adkins, Mati Aharoni, Devin Akin, Wade Alcorn, Shakeel Ali, Cory Altheide, Pedram Amini, Edward Amoroso, Ross Anderson, Jason Andress, Andres Andreu, Mike Andrews, Chris Anley, Steven Anson, Reynaldo Anzaldua, Michael Arata Jr., John Arquilla, Richard Austin, Paul Baccas, Elias Bachaalany, Gary Bahadur, Brain Baker, Andrew Baker, William Barker, Keith Barker, Ryan Barnett, Daniel Barrett, Russ Basiura, Michael Bauer, Mark Bauhaus, Tony Bautts, Jay Beale, Nicolas Beauchesne, Kevin Beaver, Ronald Beekelaar, Richard Bejtlich, Raheem Beyah, Betsy Beyer, Rios Billy, Philippe Biondi, Matt Bishop, Paul Blankinship, Dion Blazakis, Bill Blunden, Mike Borkin, Mark Bowden, The Hacking Boy, Gregory Boyce, Tony Bradley, Roberta Bragg, Roberta Bragg, Joel Brenner, Hardin Brett, Lawrie Brown, Christopher Brown, Jessey Bullock, Steve Bunting, Bill Burke, Bryan Burns, Michael Bushong, Robert Byrnes, Johnny Cache, Thomas Calabrese, Rich Campagna, Dawn Cappelli, Sonya Carothers, Larry Carpenter, Jeffrey Carr, Nicholas Carr, Brian Carrier, Harlan Carvey, Harlan Carvey, Brian Caswell, CIA Central Intelligence Agency, Strata Chalup, Pravir Chandra, H Chaouchi, Laura Chappell, Michael Chapple, Yan Chen, Denny Cherry, Brian Chess, Anton Chuvakin, Chris Clark, Ben Clark, Andrew Clark, Richard Clarke, Chey Cobb, Eric Cole, Matthew Coles, Christian Collberg, Mark Collier, Michael Collins, Gerald Combs, Eric Conrad, Greg Conti, Greg Conti, Richard Conway, Mark Cooper, Cherita Corbett, Gordon Corera, David Cowen, Kerry Cox, Douglas Crockford, Michael Cross, Dino DaiZovi, Gary Danahue, Bruce Dang, Neil Daswani, Sherri Davidoff, Chris Davis, Terry Dawson, Steven DeFino, Jared DeMott, Daniel Dieterle, Tassos Dimitriou, Yuri Diogenes, Gary Donahue, Chris Dotson, Mark Dowd, Wenliang Du, Ido Dubrawsky, Emmett Dulaney, Ken Dunham, Elfriede Dustin, Himanshu Dwivedi, Himanshu Dwivedi, Chris Eagle, Jason Eckert, Charles Edge, Eldad Eilam, Christopher Elisan, David Endler, Patrick Engebretson, Patrick Engebretson, Jon Erickson, Stefan Esser, Keatron Evans, Vyacheslav Fadyushin, Jeremy Faircloth, Matt Fearnow, Joshua Feldman, Niels Ferguson, Kevin Finisterre, Seth Fogie, Don Franke, Karen Frederick, Christian Frichot, Stephen Fried, Allan Friedman, Alexander Fry, Cathy Gadecki, Helen Gaines, Tom Gallagher, Brady Gaster, Konstantin Gavrilenko, Alexandre Gazet, Christopher Gerq, Darril Gibson, Darril Gibson, Misha Glenny, Dieter Gollmann, Walter Goralski, Mark Graff, Will Gragido, Jennifer Granick, Larry Greenblatt, Adam Greene, Michael Gregg, Peter Gregory, Jason Grembi, Roger Grimes, Bill Grindlay, Jeremiah Grossman, Paul Guersch, Michael Hackett, Christopher Hadnagy, Mounir Hahad, Jonathan Ham, Robert Hansen, David Harley, Allen Harper, Shon Harris, Jim Harrison, Blake Hartstein, Todd Haverkos, Sikandar Hayat, Lance Hayden, John Heasman, Lance Henderson, Tedi Heriyanto, Billy Hoffman, Andrew Hoffman, Christina Hogan, Greg Holden, Andrew Honig, Andrew Hoog, Paco Hope, Joe Howard, Michael Howard, Jeffrey Hunker, Beau Hunter, Chris Hurley, Chris Iezzoni, Mohammed Imran, Alex Ionescu, Vincenzo Iozzo, Subbu Iyer, Jay Jacobs, Kevin James, Andrew Jaquith, Bryan Jeffries, Jesper Johansson, Bob Johnson, Robert Johnson, Keith Jones, Andrew Jones, Sebastien Josse, Antoine Joux, David Kahn, Horst Karin, Devon Kearns, John Kelly, David Kennedy, Karen Kent, Dan Kent, Christoph Kern, Anita Kesavan, Dave Killion, Peter Kim, Charles Kim, Joe Kissell, Tobias Klein, Robert Knake, Brian Koerner, Tadayoshi Kohno, Brian Komar, Srinivasa Kotipalli, Thomas Kranz, Micki Krause, Ashwin Krishnan, Ronald Krutz, Subra Kumaraswamy, Joydip Kundu, George Kurtz, Thomas Kyte, Gayle Laakmann McDowell, Sitaraman Lakshminarayanan, Todd Lammle, Lawrence Landauer, Shahed Latif, David LeBlanc, Gideon Lenkey, Piotr Lewandowski, Michael Ligh, Terrence Lillard, Thomas Limoncelli, Felix Lindner, Mario Linkies, Steve Lipner, Tom Liston, David Litchfield, Vincent Liu, Johnny Long, Michael Lucas, J.J. Luna, Jason Luttgens, David Lynas, Michael Lynn, Gordon Lyon, Tyson Macaulay, Cynthia Madden, Tony Mancill, Kevin Mandia, Steve Manzuik, Eric Markham, John Markoff, Nicholas Marsh, Raffael Marty, Tim Mather, Pepe Matthew, Herbert Mattord, David Maynor, Bill McCarty, Stuart McClure, John McDonald, Gary McGraw, Andrew Mckinnon, Chris McNab, Janise Mcnair, Joseph Meeks, Haroon Meer, Joseph Menn, Matt Messier, Andrei Mikhailovsky, Charles Miller, Charlie Miller, Seth Misenar, Kevin Mitnick, Tony Mobily, Abhijit Mohanta, Andrew Moore, HD Moore, Alexandre Moraes, Eric Moret, Scott Morris, Don Murdoch, Jasvir Nagra, Bill Nelson, Lucas Nelson, Jonathan Ness, Hung Nguyen, Dhanjani Nitesh, Wes Noonan, Stephen Northcutt, TJ O'Connor, Adam O'Donnell, Jim O'Gorman, Massimiliano Oldani, Deviant Ollam, Parmy Olson, Ana Oprea, Andy Oram, Michele Orru, Christof Paar, Christopher Paggen, Shiva Parasram, Jeff Parker, Carey Parker, Mike Pastore, Mano Paul, Cyrus Peikari, Thomas Peltier, Jan Pelzl, Bill Pennington, Matt Pepe, Enrico Perla, Richard Petersen, Petko Petkov, Shari Pfleeger, Charles Pfleeger, Aaron Philipp, Amelia Phillips, Marcus Pinto, Scott Pinzon, John Pirc, Chris Pogue, David Pollino, Philip Polstra, Roman Poroshyn, Gary Porteus, Kevin Poulsen, Bart Preneel, Curtis Preston, Christian Probst, Chris Prosise, Gregor Purdy, Michael Quinn, Anton Rager, Vivek Ramachandran, Marcus Ranum, Michael Rash, George Reese, Eric Rescorla, liz Rice, Matthew Richard, Gerardo Richarte, Tom Ridge, Sandra Ring, Ivan Ristic, Ronald Ritchey, Russ Rogers, David Ronfeldt, Curtis Rose, Burton Rosenberg, Jason Rouse, Bob Rudis, Mark Russinovich, Enrico Sabbadin, John Sammons, Chris Sanders, Mohit Saxena, Joel Scambray, Mike Schiller, Howard Schmidt, Bruce Schneier, Steve Schroeder, Gregg Schudel, Justin Schuh, James Scott, David Seidi, David Seidl, Justin Seitz, Doug Seven, Shreeraj Shah, Saumil Shah, Craig Shallahamer, Isaac Sharpe, Mike Shema, John Sherwood, Mike Shiffman, Tsutomo Shimomura, Scott Shinn, Michael Shinn, Adam Shostack, Michael Sikorski, John Sileo, Richard Silverman, Caleb Sima, William Simon, William Simon, P Singer, Bryan Singer, Simon Singh, Srinivasa Sivakumar, Edward Skoudis, Randy Smith, James Smith, David Smith, Mike Smith, Julien Sobrier, Imran Sohail, David Solomon, Drew Spaniel, Walter Spivak, William Stallings, James Stanger, Christopher Steuart, Andrew Stewart, James Stewart, Richard Stiennon, Katie Strzempka, Dafydd Stuttard, Gene Sullivan, Bryan Sullivan, Michael Sutton, Peter Szor, Ari Takanen, Izar Tarandach, Roelof Temmingh, David Thiel, Stephen Thomas, Frank Thornton, Harold Tipton, Ryan Trost, Randall Trzeciak, James Turnbull, Craig Valli, Charl van der Walt, Kenneth Van Wyk, Jesse Varsalone, Kumaraguru Velmurugan, Nitin Vengurlekar, Dan Verton, John Viega, Andrew Vladimirov, Linda Volonino, Jack Voth, Eric Vyncke, Peter Wainwright, Matt Walker, Kevin Wallace, Ben Walther, Wallace Wang, Henry Warren, Michael Watkins, Phillip Wearne, Ralf-Philipp Weinmann, Jacob West, Joern Wettern, Kevin Wheeler, Alan White, Michael Whitman, James Whittaker, Jack Wiles, Thomas Wilhelm, Terron Williams, Paul Wilson, Ira Winkler, Steve Winterfeld, Scott Winters, Josephine Wolff, Caroline Wong, Steve Wozniak, Chris Wysopal, Michal Zalewski, Jonathan Zdziarski, Lenny Zeltser, Kim Zetter, Jianying Zhou, Dino Dai Zovi
Published: 01 November 2005Being highly flexible in building dynamic, database-driven web applications makes the PHP programming language one of the most popular web development tools in use today. It also works beautifully with other open source tools, such as the MySQL database and the Apache web server. However, as more web sites are developed in PHP, they become targets for malicious attackers, and developers need to prepare for the attacks.
Security is an issue that demands attention, given the growing frequency of attacks on web sites. "Essential PHP Security" explains the most common types of attacks and how to write code that isn't susceptible to them. By examining specific attacks and the techniques used to protect against them, you will have a deeper understanding and appreciation of the safeguards you are about to learn in this book.
In the much-needed (and highly-requested) "Essential PHP Security," each chapter covers an aspect of a web application (such as form processing, database programming, session management, and authentication). Chapters describe potential attacks with examples and then explain techniques to help you prevent those attacks.
Topics covered include:
- Preventing cross-site scripting (XSS) vulnerabilities
- Protecting against SQL injection attacks
- Complicating session hijacking attempts
You are in good hands with author Chris Shiflett, an internationally-recognized expert in the field of PHP security. Shiflett is also the founder and President of Brain Bulb, a PHP consultancy that offers a variety of services to clients around the world.Pages: 109
ISBN: 059600656X
ISBN-13: 978-0596006563
Buy at bookdepository.com free delivery worldwide.
