Essential PHP Security Paperback – 23 Oct 2005
|New from||Used from|
- Choose from over 13,000 locations across the UK
- Prime members get unlimited deliveries at no additional cost
- Find your preferred location and add it to your address book
- Dispatch to this address when you check out
Frequently bought together
Customers who bought this item also bought
Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.
To get the free app, enter your mobile phone number.
Would you like to tell us about a lower price?
If you are a seller for this product, would you like to suggest updates through seller support?
You've heard the nasty stories about PHP sites being wiped off the web by evil hackers? Sadly it's not scare-mongering as it does happen, and as much as we love PHP it needs proper security to keep your site safe from harm. Plenty of PHP books have the odd chapter on security but at last O'Reilly have published a whole volume dedicated to the cause, with all the code you'll need to keep everything in order. Each chapter covers a different aspect of the application, from form processing to database programming and session management. Written in a straight forward style, it's ideal for every PHP user, but at GBP20 you might expect a little more than just 100 pages." .NET, November 2005 "If you write PHP scripts, get a copy" - Alain Williams, news@UK, March 2006
A Guide to Building Secure Web ApplicationsSee all Product description
What other items do customers buy after viewing this item?
Top customer reviews
One of the things I liked about this book is that you don't need to be sat next to your PC to read it. Though it has many nice and clear code examples, it's mainly about principles and theory. Excellent to have on the bedside table.
It isn't a very thick book, but is written in a clear and accessible style, and I found myself going 'aha' all the way through. I read it quickly but have a feeling that I'll return to it often until all those best practices are memorised and I'm 'doing' them.
Worth buying? Definitely. This book should be on every serious PHP programmer's bookshelf.
The book is not very big (~100 pages) and can be read quite fast. It's also an easy read, as the language in the book is not hard as some other technical books might be. The explanations are good, and easy to understand, as well as the reasoning.
I enjoyed this book, and it's a great reference. It's size also allows you to read it again (And that's a great idea - Helps you to remember) to get the most out of the book.
The author knows what he talks about, and his advice really makes sense. You might already be aware of some of the concepts, such as filtering input etc, but Chris explains really well the ideas behind such concepts, and gives great examples of what can go wrong if you fail to follow the simple principles given.
All in all, this is a great book that really helps you, by teaching you best practices from a very experienced web-developer.
And the book is really great as a reference.
It has a practical approach to the problem and examples to illustrate the common security holes in PHP scripts and how to prevent them. There is no extraneous material and security issues are described in a concise way making it easy to follow. Examples are available on the books website (in common with most O'Reilly books)
Read this book before writing a PHP script, during and afterwards. Have it to hand: it is a vade mecum of PHP security. Reading and applying the knowledge within its covers could save you hours of time undoing a hack on your website and database.
Essential PHP Security by Chris Shiflett brings you those ideas in a book that looks rather, well small. We've all gotten used to those big, heavy, shelf bending computer books, but this one has just 124 pages. Allow me to get a bit poetic: Don't judge the book by its covers, or rather by the number of pages. This book is the essential reading for all PHP developers, professional and hobbyist alike. It is one of those books that will not get outdated and will be referenced on a daily basis.
I really enjoyed reading this book. It made me realize that some of my approaches were a bit misslead, but mostly solidified my way of coding. And that is really what I was looking to get out of this book.
The book is lean and quick to read, the content is aimed at reasonably knowledgeable programmers, but there is nothing here that can't be easily researched. All the issues are illustrated with short, relevant examples and code, which makes a change from most programming books. The author also maintains his own website to ensure that readers can remain updated on problems for the foreseeable future. Overall, this is essential stuff and great value.
That said, it highlights a lot of the important concepts of filter input and escape output. If you do that, you've probably covered 85% of the problems.
The book also covers cookie interception and SQL injection, but the Internet will also give the same.
It won't take long to read the book, but perhaps as long as your code is written with 'security in depth' again you're most of the way there.
Given four stars for what's in the book, but more guidance and examples would have been welcome.
Would you like to see more reviews about this item?
Most recent customer reviews
I was a bit disappointed with this book.Read more
Look for similar items by category
- Books > Business, Finance & Law > E-Commerce > Managers' Guides to Computing
- Books > Computing & Internet > Computer Science > Information Systems
- Books > Computing & Internet > Digital Lifestyle > Online Shopping > Amazon
- Books > Computing & Internet > Networking & Security > Security
- Books > Computing & Internet > Programming > Languages
- Books > Computing & Internet > Web Development > Web Design > Applications
- Books > Computing & Internet > Web Development > Web Scripting & Programming