Learn how to meet the most important security challenges when developing websites with PHP.
Overview
Syllabus
Introduction
- The need for security with PHP
- What is security?
- Security and PHP
- General security principles
- Keeping versions up to date
- phpinfo and phpMyAdmin
- Configure error reporting and logging
- Other configuration options
- PHP on a shared host
- Validating input
- Sanitizing data
- Keeping code private
- Smart logging
- Cookie configuration
- Cross-site scripting (XSS)
- Cross-site request forgery (CSRF)
- SQL injection
- Session hijacking and fixation
- Remote system execution
- PHP code injection
- Next steps
Taught by
Kevin Skoglund