Tim,
Make sure you handle all exceptions, exit() after each redirect, make sure
you are validating all form fields before it goes into the database, things
like that. Might want to grab webproxy from www.atstake.com and use it to
test your app. Its kind of complex to use at first, but
Good question! I rarely see this type of question here.
http://www.dwheeler.com/secure-programs/ is a good one- even has a small
section dedicated specifically to PHP
The Shmoo Group has a good list at http://www.shmoo.com/securecode/
And if you're one of the learn by example of how not to do
2 matches
Mail list logo
