Go Back   Ultimate Web Site Drop Down Menu Forum > News and Information > General Web Trends and News
Reload this Page 'Month of PHP Security' Finds 60 Bugs
Register FAQ Members List Calendar Today's Posts

Reply
View First Unread View First Unread  
Thread Tools Display Modes
Unread 06-04-2010, 05:53 PM
sl4shd0t
Posts: n/a
  #1  
Default 'Month of PHP Security' Finds 60 Bugs
darthcamaro writes "More than 60 bugs were reported in PHP over the last 30 days by the Month of PHP Security project. Most of the flaws, however, are ones that developers themselves can protect against with proper coding practices, according to Andi Gutmans, CEO of commercial PHP vendor Zend. He argues that PHP security is a matter of setting expectations. In his view, PHP mdash; like all development languages mdash; is only as secure as the code developers write with it. 'People should not expect PHP to be able to enforce security boundaries on a developer [who] has permissions to run custom PHP code,' Gutmans said. 'It's an inherently flawed scenario mdash; and it's the wrong layer to protect in. People must rely on properly configured OS-level permissions for securing against untrusted developers.' Gutmans also praised the MOPS effort for elevating the profile of PHP security throughout the community, and for responsibly alerting the PHP project first with the bugs they found."pa href="http://www.facebook.com/sharer.php?u=http%3A%2F%2Fdevelopers.slashdot.org% 2Fstory%2F10%2F06%2F04%2F1540241%2FMonth-of-PHP-Security-Finds-60-Bugs" target="_blank" title="Share on Facebook"img src="http://a.fsdn.com/sd/facebook_icon_large.png"/a a href="http://twitter.com/home?status='Month+of+PHP+Security'+Finds+60+Bugs% 3A+http%3A%2F%2Fbit.ly%2Fdwb08c" target="_blank" title="Share on Twitter"img src="http://a.fsdn.com/sd/twitter_icon_large.png"/a/ppa href="http://developers.slashdot.org/story/10/06/04/1540241/Month-of-PHP-Security-Finds-60-Bugs?from=rss"Read more of this story/a at Slashdot./ppa href="http://feedads.g.doubleclick.net/~at/bV1Qqk-FGauaXOd7lk49DI05iiw/0/da"img src="http://feedads.g.doubleclick.net/~at/bV1Qqk-FGauaXOd7lk49DI05iiw/0/di" border="0" ismap="true"/img/abr/a href="http://feedads.g.doubleclick.net/~at/bV1Qqk-FGauaXOd7lk49DI05iiw/1/da"img src="http://feedads.g.doubleclick.net/~at/bV1Qqk-FGauaXOd7lk49DI05iiw/1/di" border="0" ismap="true"/img/a/pimg src="http://feeds.feedburner.com/~r/Slashdot/slashdotDevelopers/~4/EcA54_SXlDQ" height="1" width="1"/

More...
Reply With Quote
Reply

« Previous Thread | Next Thread »


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 02:14 PM.

Contact Us - UDM4 Forum - Archive - Privacy Statement - Top

Powered by vBulletin® Version 3.0.1
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.