BetterPHP

Hello

I found some good videos about PHP security here:
http://www.youtube.com/watch?v=VUucX6B0 ... ure=relmfu

Obviously, there's also a first part to this tutorial I encourage you to watch them if you aren't used to PHP security.

Two more links for the ones that want to get more secured:
http://en.wikipedia.org/wiki/Cross-site_request_forgery
http://en.wikipedia.org/wiki/Session_fixation

Stay safe,
CK

PS: I did not contribute, nor am I affiliated with any of the above mentioned sites. This is not some kind of ad. Just valuable information.

derekbanas is one of the YouTube tutorial channels I follow. He has a few nice tutorials, and all 1080p!

Thanks for this

[syntax=php]echo ‘<p><font color=”red” size=”+1″>Please enter your first name!</font></p>’;[/syntax]
Lost interest when I saw that !

Also, there is no need to escape the zip code, as it is forced to only be numbers by the regular expression.

And the other thing is that this code ends up way longer than it needs to be

I'm sure it well explained though

jacek wrote:[syntax=php]echo ‘<p><font color=”red” size=”+1″>Please enter your first name!</font></p>’;[/syntax]
Lost interest when I saw that !

Also, there is no need to escape the zip code, as it is forced to only be numbers by the regular expression.

And the other thing is that this code ends up way longer than it needs to be

I'm sure it well explained though

Yeah, I noticed he does escape somethings that don't need to be escaped. But I guess that the goal is not to teach guys like you But more PHP 'newbies' like myself so as to get us used to using these security methods

Another great site, which also explains how to prevent session fixation, cookie theft and stuff like that:
http://www.phpfreaks.com/tutorial/php-security

I know it's about security but I thought he did a little to much. He had like 50 random number generators on the password o_O