PHP Developers Network
http://forums.devnetwork.net/

Security Resources
http://forums.devnetwork.net/viewtopic.php?f=34&t=29269
Page 3 of 3

Author:  Mordred [ Wed Mar 14, 2012 10:10 am ]
Post subject:  Re: Security Resources


Author:  Christopher [ Wed Mar 14, 2012 4:23 pm ]
Post subject:  Re: Security Resources


Author:  Mordred [ Thu Mar 15, 2012 3:27 am ]
Post subject:  Re: Security Resources

"Convert the string from utf-8 to utf-8 making sure you remove any character sequences that are not valid for utf-8"
I must add that this must be accompanied by strict enforcement of utf-8 encoding to the client to avoid legitimate clients sending you their weird Elbonian encoding and getting their data mangled. This is not related to security, just to the proper functioning of the site. An attacker will not send you well-formed utf-8 because he's a nice guy, that's why you don't trust him to, and that's why you force clean his input.

Author:  ragax [ Thu Jul 25, 2013 8:48 pm ]
Post subject:  Re: Security Resources


Author:  Maugrim_The_Reaper [ Tue Jan 21, 2014 5:16 am ]
Post subject:  Re: Security Resources

http://phpsecurity.readthedocs.org/en/latest/

Disclosure: I wrote it.

Author:  munkitkat [ Thu Mar 10, 2016 7:24 am ]
Post subject:  Re: Security Resources

This is an excellent source for PHP security. I'm impressed.

Page 3 of 3 All times are UTC - 5 hours
Powered by phpBB® Forum Software © phpBB Group
http://www.phpbb.com/