From Application Security Principles to the Implementation of XSS Defenses
Book Details:
Pages: | 368 |
Published: | Dec 10 2010 |
Posted: | Apr 25 2015 |
Language: | English |
Book format: | PDF |
Book size: | 4.8 MB |
Book Description:
PHP security, just like PHP itself, has advanced. Updated for PHP 5.3,the second edition of this authoritative PHP security book coversfoundational PHP securitytopics like SQL injection, XSS, user authentication, and secure PHP development. Chris Snyder and Tom Myer also delve into recent developments like mobile security, the impact of JavaScript, and the advantages of recent PHP hardening efforts. Pro PHP Security, Second Edition will serve as your complete guide for taking defensive and proactive security measures within your PHP applications. Beginners in secure programming will find a lot of material on secure PHP development, the basics of encryption, secure protocols, as well as how to reconcile the demands of server-side and web application security. What youll learn Secure PHP development principles PHP web application security User and file security Mobile security Encryption and secure protocols Dealing with JavaScript Who this book is for Pro PHP Security appeals to all intermediate and advanced PHP programmers who need to keep websites safe. It also contains material of interest to all who are concerned with web application security. Table of Contents Why Is Secure Programming a Concern? Validating and Sanitizing User Input Preventing SQL Injection Preventing Cross-Site Scripting Preventing Remote Execution Enforcing Security for Temporary Files Preventing Session Hijacking Securing REST Services Using CAPTCHAs User Authentication, Authorization, and Logging Preventing Data Loss Safe Execution of System and Remote Procedure Calls Securing Unix Securing Your Database Using Encryption Securing Network Connections: SSL and SSH Final Recommendations
Pro PHP Security is one of the first books devoted solely to PHP security. It will serve as your complete guide for taking defensive and proactive security measures within your PHP applications.The methods discussed are compatible with PHP versions 3, 4, and 5. The knowledge youll gain from this comprehensive guide will help you prevent attackers from potentially disrupting site operation or destroying data. And youll learn about various security measures, for example, creating and deploying "captchas," validating e-mail, fending off SQL injection attacks, and preventing cross-site scripting attempts....
This book is for intermediate programmers interested in building Ajax web applications using jQuery and PHP. Along with teaching some advanced PHP techniques, it willshow you how to take your dynamic applications to the next level by adding a JavaScript layer with jQuery. Learn to utilize built-in PHP functions to build calendar tools. Learn how jQuery can be used for Ajax, animation, client-side validation, and more. What youll learn How to use PHP to build a calendar application that allows users to post, view, edit, and delete events How to use jQuery to allow the calendar app to be viewed and edited without requiring page refreshes using built-in Ajax functions The power and versatility of PHP's object-oriented programming style The variou...
Patterns, Frameworks, Testing and More
Taking care to focus solely on those topics that will have the most impact on experienced PHP developers, Pro PHP is written for readers seeking to take their understanding of both PHP and sound software development practices to the next level. Advanced objectoriented features, documentation, debugging, software patterns, and the Standard PHP Library are just a few of the topics covered in extensive detail. Author and noted PHP expert Kevin McArthur also examines emerging practices and trends such as the MVC architecture as applied to PHP, with special emphasis placed upon the increasingly popular Zend Framework. With Ajax and web services crucial to the success of today's web applications, the book concludes with several chapters covering JSON, the ...
2007 - 2021 © eBooks-IT.org