I have a question which as of yet I am unable to find any information
about from googling. Lets say you have just written a fairly robust
PHP/MySQL application and would like to put it on your production server.
For reasons of clarification lets say this application handles sensitive
customer data including credit infromation, so it is imperitive that the
data remain secure and during the development process at every turn you
went through great lengths to filter data on forms, URL's file uploads etc.
Is there any product available, commercial or free which performs source
code auditing which *specificly searches PHP code for SQL, XSS type of
attacks or vulnerabilities? TIA.
--
Jason Gerfen
"the life you live ignoring who, ignoring who you're giving money to.
and you, you support the corrupt industries and companies who dont think to
care.
guilty...guilty...guilty by ignorance.
no feeling... no substance... killing... you're killing through your ignorance."
~ Snapcase
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
