 Trade In this Item for up to £0.25
Get an extra £5 when you trade in books worth £10 or more until June 30, 2012. Trade in PHP Architect's Guide to PHP Security: A Step-by-step Guide to Writing Secure and Reliable PHP Applications for an Amazon.co.uk gift card of up to £0.25, which you can then spend on millions of items across the site. Trade-in values may vary (terms apply). Find more products eligible for trade-in.
|
Frequently Bought Together
Product details
|
Product Description
Product Description
With the number of security flaws and exploits discovered and released every day constantly on the rise, knowing how to write secure and reliable applications is become more and more important every day. Written by Ilia Alshanetsky, one of the foremost experts on PHP security in the world, php|architect's Guide to PHP Security focuses on providing you with all the tools and knowledge you need to both secure your existing applications and writing new systems with security in mind. This book gives you a step-by-step guide to each security-related topic, providing you with real-world examples of proper coding practices and their implementation in PHP in an accurate, concise and complete way. Provides techniques applicable to any version of PHP, including 4.x and 5.x Includes a step-by-step guide to securing your applications Includes a comprehensive coverage of security design Teaches you how to defend yourself from hackers Shows you how to distract hackers with a "tar pit" to help you fend off potential attacks
Suggested Tags from Similar Products(What's this?)Be the first one to add a relevant tag (keyword that's strongly related to this product)
|
Sell a Digital Version of This Book in the Kindle Store
If you are a publisher or author and hold the digital rights to a book, you can sell a digital version of it in our Kindle Store.
Learn more
What Other Items Do Customers Buy After Viewing This Item?
Customer Reviews
Most Helpful Customer Reviews
4 of 5 people found the following review helpful
Format:Paperback
If you want to use PHP properly then you need to understand security and this is the book to do that. Within the first chapter I'd had my eyes opened, simple methods for checking on security that I'd never even thought of.
This is a lightweight book but very valuable to have. I recommend it to anyone who is learning or has already learnt PHP, as it should compliment any decent PHP beginners book. I certainly wish someone had pointed it out to me when I first learnt.
This is a lightweight book but very valuable to have. I recommend it to anyone who is learning or has already learnt PHP, as it should compliment any decent PHP beginners book. I certainly wish someone had pointed it out to me when I first learnt.
Most Helpful Customer Reviews on Amazon.com (beta)
Amazon.com:
7 reviews
20 of 20 people found the following review helpful
An OK book, but lots of errors and examples weren't great
21 Nov 2007
Format:Paperback|Amazon Verified Purchase
As a programmer with 7 years experience, I already had a fair amount of knowledge about PHP security, but it was all self-taught. I will say that I was able to learn a few new things and pick up a few strategies from this book.
Overall, I wouldn't say I was disappointed with the book, but I definitely wasn't impressed. There were numerous misspellings, typos, and (in a few cases) words missing altogether. With my knowledge I considered these typos to be fairly minor, but someone with less experience may become confused by a few of them.
In one case, a variable in one of the coding examples was actually mis-keyed. If someone were to copy the example verbatim, it would not behave as expected. That type of error should never occur in a book like this.
The various chapters do contain useful information, but the code examples are pretty lame. Don't buy this book if you're looking for specific, real-world, useful examples on how to implement your security measures, but if you already have enough PHP experience to figure out ways of implementing the *concepts* presented in this book, then it may be worthwhile picking up.
Experienced PHP programmers with some security experience will probably find a few useful tidbits, and anyone looking to truly maximize the security of their web applications would definitely benenfit from the sheer number of concepts presented in this book. However, many PHP developers will likely agree that a number of the concepts presented are somewhat superfluous, or rendered obsolete by other concepts.
In many cases the author will provide a concept for securing an application, provide an example of how to do it, and then proceed to explain why that method is NOT the best method to use. Someone looking for a quick-use reference manual of the most effective ways to secure your application will probably not enjoy this book.
BOTTOM LINE: there's gotta be better books on PHP security available for beginners, intermediate developers, and professionals alike. Only buy this book if you're interested in a large number of concepts and don't care about clear and specific examples of real-world implementation.
Advice to the Author/Publisher: Fix the typos and put the missing words back in! Expand on your code examples and provide more real-world application. Choose better naming conventions for your variables in your examples - no one wants to guess at what the variable "$e" represents, use "$elements" instead. Compile a chapter of "Top 10 security exploits and how to avoid them" using your recommended methods for the various exploits (or something similar). As it stands now, your readers not only have to work through the errors and the poor examples, they also have to decode which of your concepts are worth actually implementing, since so many of them have loopholes, provide other vulnerabilities, or simply "aren't enough" to truly secure the application.
Overall, I wouldn't say I was disappointed with the book, but I definitely wasn't impressed. There were numerous misspellings, typos, and (in a few cases) words missing altogether. With my knowledge I considered these typos to be fairly minor, but someone with less experience may become confused by a few of them.
In one case, a variable in one of the coding examples was actually mis-keyed. If someone were to copy the example verbatim, it would not behave as expected. That type of error should never occur in a book like this.
The various chapters do contain useful information, but the code examples are pretty lame. Don't buy this book if you're looking for specific, real-world, useful examples on how to implement your security measures, but if you already have enough PHP experience to figure out ways of implementing the *concepts* presented in this book, then it may be worthwhile picking up.
Experienced PHP programmers with some security experience will probably find a few useful tidbits, and anyone looking to truly maximize the security of their web applications would definitely benenfit from the sheer number of concepts presented in this book. However, many PHP developers will likely agree that a number of the concepts presented are somewhat superfluous, or rendered obsolete by other concepts.
In many cases the author will provide a concept for securing an application, provide an example of how to do it, and then proceed to explain why that method is NOT the best method to use. Someone looking for a quick-use reference manual of the most effective ways to secure your application will probably not enjoy this book.
BOTTOM LINE: there's gotta be better books on PHP security available for beginners, intermediate developers, and professionals alike. Only buy this book if you're interested in a large number of concepts and don't care about clear and specific examples of real-world implementation.
Advice to the Author/Publisher: Fix the typos and put the missing words back in! Expand on your code examples and provide more real-world application. Choose better naming conventions for your variables in your examples - no one wants to guess at what the variable "$e" represents, use "$elements" instead. Compile a chapter of "Top 10 security exploits and how to avoid them" using your recommended methods for the various exploits (or something similar). As it stands now, your readers not only have to work through the errors and the poor examples, they also have to decode which of your concepts are worth actually implementing, since so many of them have loopholes, provide other vulnerabilities, or simply "aren't enough" to truly secure the application.
14 of 19 people found the following review helpful
Short, fast, and to-the-point (no fluff and I love it)
6 Dec 2005
Format:Paperback
This book isn't large at all, 10 chapters and thin (called a nano-book), so you may feel like you won't learn much - WRONG! I just got this book last week and I swear, this is one of the only books I've ever seen that gets to the point instantly.
As for the example code - fast, small, and no wasted time declaring variables or basic stuff.
Don't get this book if you're just learning PHP - get this book after writing your first PHP forms!!!
As for the example code - fast, small, and no wasted time declaring variables or basic stuff.
Don't get this book if you're just learning PHP - get this book after writing your first PHP forms!!!
1 of 1 people found the following review helpful
Great Book For Beginners
23 Aug 2007
Format:Paperback
This book was real helpful. I really didn't know much about the topics so I found it a good introduction. If you are even semi-knowledgeable about this area, I would recommend another book.
Were these reviews helpful?
Let us know
Listmania!
Look for similar items by category
- Books > Computing & Internet > Digital Lifestyle > Online Shopping > Amazon
- Books > Computing & Internet > Networking & Security > Security > Network Security
- Books > Computing & Internet > Networking & Security > Security > Programming
- Books > Computing & Internet > Web Development
- Books > Reference > Consumer Guides > Computer & Internet
Look for similar items by subject
Feedback
- Would you like to update product info or give feedback on images?
- I am the Author, and I want to comment on my book.
- I am the Publisher, and I want to comment on this book.
|
