Random code snippets, projects and musings about software from Eric Kidd, a developer and occasional entrepreneur. You're welcome to contact me!

Yet Another PHP Security Hole

Jul 22, 2002 • by Eric Kidd

A new security problem has been discovered in PHP 4.2.x. This is not the first major hole in PHP, and it probably won't be the last.

Even if your PHP runtime is secure, it's really hard to write secure PHP scripts. There's so many things that can go wrong--malicious users setting "internal" global variables, SQL injection attacks, ".inc" files containing passwords, and a whole host of other all-to-common bugs.

Just say no.

Want to contact me about this article? Or if you're looking for something else to read, here's a list of popular posts.

More posts