Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×
PHP

+ - Is PHP Insecure?->

Submitted by darthcamaro
darthcamaro (735685) writes "Over 60 bugs were reported in PHP over the last 30 days, should PHP users and developers be worried? Most of the flaws however are ones that developers themselves can protect against with proper coding practices according to the Andi Gutmans CEO of commercial PHP vendor Zend. He argues that PHP security is a matter of setting expectations. In his view, PHP — like all development languages, is only as secure as the code people that write code with it.

"People should not expect PHP to be able to enforce security boundaries on a developer that has permissions to run custom PHP code," Gutmans said. "It's an inherently flawed scenario — and it's the wrong layer to protect in. People must rely on properly-configured OS-level permissions for securing against untrusted developers."

"

Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Is PHP Insecure?

Comments Filter:

Live free or die.

Working...