[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: php,perl,app svr, sql dbase preferences
On Wed, 12 Sep 2001, Steven Pritchard wrote:
> I hate to start a language war, but PHP is a hideous piece of crap. See
>
> http://www.securityfocus.com/templates/archive.pike?part=.1&list=1&mid=194488
>
Thanks for posting this link. I don't agree with your description PHP, but
this got me looking through the security sections of PHP documentation,
and I'm working on hardening our applications.
In the "securityfocus.com" article they state that the "safe_mode" option
in php.ini is not well described in the documentation. That's true of the
manual at www.php.net, but there is a more full descritpion at:
http://www.zend.com/manual/features.safe-mode.php
These discussions help remind one that security is always a pain, but
constant thought is necessary for any applications written for publically
available machines.
eks
---------------------------------------------------------------------
Erich Schroeder Phone: (217)785-0033
Curator, Information Technologies FAX: (217)785-2857
Illinois State Museum GIS Lab email: erich (at) museum.state.il.us
http://www.museum.state.il.us/
---------------------------------------------------------------------
-
To unsubscribe, send email to majordomo@luci.org with
"unsubscribe luci-discuss" in the body.