PHP Security Workshop

1 day workshop to ensure you are aware of all of the main security issues in designing and developing PHP applications

PHP has a largely undeserved reputation as a language riddled with security holes. In fact, security issues in PHP applications are almost always due to programming or configuration error.

If you've taught yourself PHP, or come from a desktop applications background, it can be easy to miss out on the essential security issues that, when taken into consideration, can ensure you produce a secure, reliable application.

This one day course covers:

SQL injection
Cross-site scripting (XSS)
Cross-site request forgery (CSRF)
Arbitrary command execution
Remote file/code inclusion
Sanitsation
Sending email safely
Session fixation
General hints for developers / administrators
Tips on handling passwords
Executing shell code
The evils of Register Globals and Magic Quotes

Delegates are encouraged to bring along their own code for review during the course.

The course includes examples and solutions of vulnerabilities and examples of secure (and insecure) code.

In this section

text size:

News: PHP Training; More Magazine Articles; Developer / Sysadmin Vacancy; CaFamily.org - AJAX Chat application; BS Partnership launched