Bad Behavior is a PHP-based solution for blocking link spam and the robots which deliver it. It complements other link spam solutions by acting as a gatekeeper, preventing spammers from ever delivering their junk, and in many cases, from ever reading your site in the first place. This keeps your site’s load down, makes your site logs cleaner, and can … [ Read more ]
I wrote a PHP application for creating and editing forms and decided to make it open source and publicly available. A few days after releasing the first public version I received an email which alerted me to a security flaw which was posted on a hacking and security community site. Besides obviously being a personal disappointment, it proved to be a useful learning experience. … [ Read more ]
I readily admit that I have a lot to learn about security issues, but I did recently come across the article “Ensure basic Web site security with this checklist” by Chad Perrin on TechRepublic. I think it will be as useful to you as it was to me.
I am not knowledgeable enough about PHP security and SQL injection to write anything useful myself. However, I recently read a good three-part series of articles by Chris Snyder and Michael Southwell (an excerpt from Pro PHP Security! by Apress) which provides a nice introduction, overview and basic tips.
… [ Read more ]