Comments on: Securing PHP Applications Part II – Securing PHP code /2010/09/securing-php-applications-part-ii-securing-php-code/ Wed, 27 Jun 2012 10:59:27 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Claudia /2010/09/securing-php-applications-part-ii-securing-php-code/comment-page-1/#comment-946 Claudia Thu, 30 Sep 2010 12:41:22 +0000 /?p=299#comment-946 Hi Cris, This articles about security represent an overview. If you read my first article on this theme, you'll probably understand: "There are a lot of books treating this issue. So, why another post about this subject. Well, here a try to cover this problem in a short way so that you don’t have to read hundreds of pages or to search all over the Internet for this." Anyway, I take your comment like an suggestion and I'll write a post about that later. Thx Hi Cris,

This articles about security represent an overview. If you read my first article on this theme, you’ll probably understand:
“There are a lot of books treating this issue. So, why another post about this subject. Well, here a try to cover this problem in a short way so that you don’t have to read hundreds of pages or to search all over the Internet for this.”

Anyway, I take your comment like an suggestion and I’ll write a post about that later.

Thx

]]> By: Chris Meller /2010/09/securing-php-applications-part-ii-securing-php-code/comment-page-1/#comment-939 Chris Meller Thu, 30 Sep 2010 04:29:30 +0000 /?p=299#comment-939 Disappointing that the SQL Injection section didn't include anything about PDO and bound parameters. "Filter it" wasn't a real answer and sometimes might not be an option, "--" could be valid in a comment field, you can't just filter it out. Disappointing that the SQL Injection section didn’t include anything about PDO and bound parameters. “Filter it” wasn’t a real answer and sometimes might not be an option, “–” could be valid in a comment field, you can’t just filter it out.

]]>