Hosting PHP

Next chapter: Understanding the concerns >>

Previous chapter: Be wary of session fixation

Jump to: Security concerns   Programming secure PHP      register_globals      Choose your file extension carefully      Put key files outside your document root      Remember that most files are public      Hide your identity      Hiding PHP      Restrict general database access      Restrict PHP database access      Denial of service      Pre-initialise important variables to safe values      Be wary of session fixation   Hosting PHP      Understanding the concerns      Safe mode   Protecting your data      Data encryption      Terms you need to know      Asymmetric vs. Symmetric      Basic symmetric encryption in action      Advanced symmetric encryption      Symmetric decryption      Changing encryption algorithm      Changing block cipher mode   Hardened PHP   Summary   Exercises   Further reading   Next chapter

Home: Table of Contents