Securing PHP Apps (eBook)
XIV, 52 Seiten
Apress (Verlag)
978-1-4842-2120-4 (ISBN)
Secure your PHP-based web applications with this compact handbook. You'll get clear, practical and actionable details on how to secure various parts of your PHP web application. You'll also find scenarios to handle and improve existing legacy issues.
Is your PHP app truly secure? Let's make sure you get home on time and sleep well at night. Learn the security basics that a senior developer usually acquires over years of experience, all condensed down into one quick and easy handbook. Do you ever wonder how vulnerable you are to being hacked? Do you feel confident about storing your users' sensitive information? Imagine feeling confident in the integrity of your software when you store your users' sensitive data. No more fighting fires with lost data, no more late nights, your application is secure.
Well, this short book will answer your questions and give you confidence in being able to secure your and other PHP web apps.
Never trust your users - escape all input
Secure your PHP-based web applications with this compact handbook. You'll get clear, practical and actionable details on how to secure various parts of your PHP web application. You'll also find scenarios to handle and improve existing legacy issues.Is your PHP app truly secure? Let's make sure you get home on time and sleep well at night. Learn the security basics that a senior developer usually acquires over years of experience, all condensed down into one quick and easy handbook. Do you ever wonder how vulnerable you are to being hacked? Do you feel confident about storing your users' sensitive information? Imagine feeling confident in the integrity of your software when you store your users' sensitive data. No more fighting fires with lost data, no more late nights, your application is secure.Well, this short book will answer your questions and give you confidence in being able to secure your and other PHP web apps.What You'll LearnNever trust your users - escape all inputHTTPS/SSL/BCA/JWH/SHA and other random letters: some of them actually matterHow to handle password encryption and storage for everyoneWhat are authentication, access control, and safe file handing and how to implement themWhat are safe defaults, cross site scripting and other popular hacks Who This Book Is ForExperienced PHP coders, programmers, developers.
Ben Edmunds leads development teams to create cutting-edge web and mobile applications. He is an active leader, developer, and speaker in various development communities, especially the CodeIgniter and Laravel PHP framework communities. He has been developing software professionally for over 10 years and in that time has worked on everything from robotics to government projects. Lastly, he's a PHP Town Hall podcast co-host.
ConstructorFormatErrataSample CodeAbout the AuthorChapter 1 - Never Trust Your Users. Sanitize ALL Input!SQL InjectionMass AssignmentTypecastingSanitizing OutputChapter Two - HTTPS/SSL/BCA/JWH/SHA and Other Random Letters; Some of Them Actually Matter.What is HTTPSLimitationsWhen to use HTTPSImplementing HTTPSPathsChapter 3 - Password Encryption and Storage for EveryoneThe Small PrintWhat is a Hash?Popular AttacksA Pinch of SaltHashing AlgorithmsStorageValidationPutting It All TogetherBrute Force ProtectionUpgrading Legacy SystemsResourcesChapter 4 - Authentication, Access Control, and Safe File HandingAuthenticationAccess ControlValidating RedirectsNever Trust Yourself - Use Safe DefaultsNever Trust Dynamic Typing. It’s Not Your Friend.Cross Site ScriptingAttack Entry PointsCross Site Request ForgeryMultiple Form SubmitsRace ConditionsOutdated Libraries / External ProgramsDestructorAbout the AuthorSecurity Audit / Consulting
| Erscheint lt. Verlag | 26.7.2016 |
|---|---|
| Zusatzinfo | XIV, 52 p. 2 illus. in color. |
| Verlagsort | Berkeley |
| Sprache | englisch |
| Themenwelt | Informatik ► Netzwerke ► Sicherheit / Firewall |
| Mathematik / Informatik ► Informatik ► Programmiersprachen / -werkzeuge | |
| Mathematik / Informatik ► Informatik ► Web / Internet | |
| Schlagworte | Apps • PHP • Scripting • secure • security • Web |
| ISBN-10 | 1-4842-2120-6 / 1484221206 |
| ISBN-13 | 978-1-4842-2120-4 / 9781484221204 |
| Haben Sie eine Frage zum Produkt? |
PDF (Wasserzeichen)Größe: 4,2 MB
DRM: Digitales Wasserzeichen
Dieses eBook enthält ein digitales Wasserzeichen und ist damit für Sie personalisiert. Bei einer missbräuchlichen Weitergabe des eBooks an Dritte ist eine Rückverfolgung an die Quelle möglich.
Dateiformat: PDF (Portable Document Format)
Mit einem festen Seitenlayout eignet sich die PDF besonders für Fachbücher mit Spalten, Tabellen und Abbildungen. Eine PDF kann auf fast allen Geräten angezeigt werden, ist aber für kleine Displays (Smartphone, eReader) nur eingeschränkt geeignet.
Systemvoraussetzungen:
PC/Mac: Mit einem PC oder Mac können Sie dieses eBook lesen. Sie benötigen dafür einen PDF-Viewer - z.B. den Adobe Reader oder Adobe Digital Editions.
eReader: Dieses eBook kann mit (fast) allen eBook-Readern gelesen werden. Mit dem amazon-Kindle ist es aber nicht kompatibel.
Smartphone/Tablet: Egal ob Apple oder Android, dieses eBook können Sie lesen. Sie benötigen dafür einen PDF-Viewer - z.B. die kostenlose Adobe Digital Editions-App.
Buying eBooks from abroad
For tax law reasons we can sell eBooks just within Germany and Switzerland. Regrettably we cannot fulfill eBook-orders from other countries.
aus dem Bereich
