security issues with php

Forum Moderators: coopster

Message Too Old, No Replies

security issues with php

hacks, bugs, holes, php, security, safe, sendmail

huds

7:17 pm on Sep 6, 2006 (gmt 0)

Hi, I'm hoping someone can enlighten me on security aspects to consider when building php websites.

My own situation is I created a very simple cms, just a small project to get used to php.
It seems that now someone is sending out spam on the server I'm on, and I was worried in case it was my script.

There are no mail functions in it, and I used post instead of get as advised, so I'm not sure if could have been used in this way or not.

But it got me thinking, and I realise I know absolutely sweet fa about security issues.

Any advice on security, or links to good articles, would be much appreciated.

Thanks in advance.

jatar_k

7:27 pm on Sep 6, 2006 (gmt 0)

if you're not using any mail functions then I have a hard time seeing how they could use your scripts to spam, so I wouldn't worry

you could try a couple of threads from our Library [webmasterworld.com] for a start
PHP Security [webmasterworld.com]
and an older one
[webmasterworld.com...]

or this as well
Peer Code Review [webmasterworld.com]

eelixduppy

7:29 pm on Sep 6, 2006 (gmt 0)

There are many security issues to think about when using PHP. Here's some links on the topic:

I think that should be good for now ;)

Good luck!

<edit>It's my typing speed...that's all ;)</edit>

jatar_k

8:20 pm on Sep 6, 2006 (gmt 0)

hehe ;)

a google search for PHP Security [google.com] has many good articles as well