Book Review: Essential PHP Security
- 17th August 2006 | permanent link
- comments (0)
We've all written unsecure code. Then tried to circumvent our weak security measures. It made us better programmers, and made us sleep better knowing our applications were safe. But there is just so far your imagination can go, while thinking up ways to get inside your perfectly secure system.
8 chapters. 30 exploits. Impossibly small
Essential PHP Security by Chris Shiflett brings you those ideas in a book that looks rather, well small. We've all gotten used to those big, heavy, shelf bending computer books, but this one has just 124 pages. Allow me to get a bit poetic: Don't judge the book by its covers
, or rather by the number of pages. This book is the essential reading for all PHP developers, professional and hobbyist alike. It is one of those books that will not get outdated and will be referenced on a daily basis.
Summary of content
- Chapter 1. Introduction
- Chapter 2. Forms and URLs (chapter availible for download)
- Chapter 3. Databases and SQL
- Chapter 4. Sessions and Cookies(chapter availible for download)
- Chapter 5. Includes
- Chapter 6. Files and Commands
- Chapter 7. Authentication and Authorization
- Chapter 8. Shared Hosting
- Appendix A: Configuration Directives
- Appendix B: Functions
- Appendix C:Cryptography
Conclusion
I really enjoyed reading this book. It made me realize that some of my approaches were a bit misslead, but mostly solidified my way of coding. And that is really what I was looking to get out of this book.
No comment so far. Post whatever thoughts you might have regarding the current entry.