NETTUTS posted an article, 5 Helpful Tips for Creating Secure PHP Applications.
Frequently PHP sites have security issues, as some things make sense but are just not fully thought out.
When doing web development, it’s nice to program for the ideal input, but we also have to assume all other possible input.
Here’s the list of 5 tips that are explained in detail in the article:
- Use Proper Error Reporting
- Disable PHP’s “Bad Features”
- Validate Input
- Watch for Cross Site Scripting (XSS) Attacks in User Input
- Protecting against SQL Injection