Pro PHP Secure Programming
Chris Snyder, Michael Southwell - Collection The Expert's Voice in Open Source
Résumé
Pro PHP Security is one of the first books devoted solely to PHP security. It will serve as your complete guide for taking defensive and proactive security measures within your PHP applications. (And the methods discussed are compatible with PHP versions 3, 4, and 5.)
The knowledge you'll gain from this comprehensive guide will help you prevent attackers from potentially disrupting site operation or destroying data. And you'll learn about various security measures, for example, creating and deploying "captchas," validating e-mail, fending off SQL injection attacks, and preventing cross-site scripting attempts.
L'auteur - Chris Snyder
Chris Snyder is a software engineer at Fund for the City of New York, where he helps develop next-generation websites and services for nonprofit organizations. He is a member of the Executive Board of New York PHP, and has been looking for new ways to build scriptable, linked, multimedia content since he saw his first Hypercard stack in 1988.
L'auteur - Michael Southwell
Michael Southwell is a retired English professor who has been developing websites for more than 10 years in the small business, nonprofit, and educational areas, with special interest in problems of accessibility. He has authored and co-authored 8 books and numerous articles about writing, writing and computers, and writing education. He is a member of the Executive Board of New York PHP, and a Zend Certified Engineer.
Sommaire
- The Importance of Security
- Why Is Secure Programming a Concern?
- Maintaining a Secure Environment
- Dealing with Shared Hosts
- Maintaining Separate Development and Production Environments
- Keeping Software Up to Date
- Using Encryption I: Theory
- Using Encryption II: Practice
- Securing Network Connections I: SSL
- Securing Network Connections II: SSH
- Controlling Access I: Authentication
- Controlling Access II: Permissions and Restrictions
- Practicing Secure PHP Programming
- Validating User Input
- Preventing SQL Injection
- Preventing Cross-Site Scripting
- Preventing Remote Execution
- Enforcing Security for Temporary Files Preventing Session Hijacking
- Practicing Secure Operations
- Allowing Only Human Users
- Verifying Your Users' Identities
- Using Roles to Authorize Actions
- Adding Accountability to Track Your Users
- Preventing Data Loss
- Safely Executing System Commands
- Handling Remote Procedure Calls Safely
- Taking Advantage of Peer Review
Caractéristiques techniques
| PAPIER | |
| Éditeur(s) | Apress |
| Auteur(s) | Chris Snyder, Michael Southwell |
| Collection | The Expert's Voice in Open Source |
| Parution | 08/09/2005 |
| Nb. de pages | 500 |
| Format | 17,5 x 23 |
| Couverture | Broché |
| Poids | 825g |
| Intérieur | Noir et Blanc |
| EAN13 | 9781590595084 |
| ISBN13 | 978-1-5905-9508-4 |
Avantages Eyrolles.com
Consultez aussi
- Les meilleures ventes en Graphisme & Photo
- Les meilleures ventes en Informatique
- Les meilleures ventes en Construction
- Les meilleures ventes en Entreprise & Droit
- Les meilleures ventes en Sciences
- Les meilleures ventes en Littérature
- Les meilleures ventes en Arts & Loisirs
- Les meilleures ventes en Vie pratique
- Les meilleures ventes en Voyage et Tourisme
- Les meilleures ventes en BD et Jeunesse
- Informatique Systèmes d'exploitation Linux
- Informatique Bases de données Produits SGBD MySQL
- Informatique Développement d'applications Conception et développement web
- Informatique Développement d'applications Conception et développement web Serveurs web et serveurs d'application Apache
- Informatique Développement d'applications Langages PHP
