Tim’s Weblog Tim's Weblog
Tim Strehle’s links and thoughts on Web apps, managing software development and Digital Asset Management, since 2002.
2006-01-24

PHP Security: Dumb Users or Dumb APIs?

Harry Fuecks at SitePoint - PHP Security: Dumb Users or Dumb APIs?:

"There’s another round of “Is PHP Secure?” debate happening right now. Chris drew attention to it, pointing to a post by Andrew van der Stock (who’s a contributor to OWASP): PHP Insecurity: Failure of Leadership.

So the usual denials have been made (see replies to Chris’s entry)—”Damn newbies”, “Holes in PHP-based app != PHP insecure”, etc., all of which I agree with. But…

[...] What if Andrew does have a point? What if we’re living in denial?"

Tue, 24 Jan 2006 20:36:23 +0000