The WACT Wiki now has a page about Php Application Security which (I assume, judging from the style) Jeff added. Right now it’s a pretty much a checklist for things to watch out for, plus links to many a bedtime read (or not if you like to sleep well).

Although the WIKI was originally intended for documenting WACT, it seems to have taken on a life of it’s own, with pages like that about the Template View having become almost infamous. Good to see it’s become a shared resource, useful to PHP developers in general.

Feel free to add your input to Php Application Security and the pages leading off from it.

Get your free chapter of Level Up Your Web Apps with Go

Get a free chapter of Level Up Your Web Apps with Go, plus updates and exclusive offers from SitePoint.


  • http://www.sitepoint.com/ mmj

    Some good starting points, though the points there at the moment seem to biased toward the ‘security by obscurity’ approach.

  • Jerry

    Check out SecurePHP. It’s another wiki devoted to PHP security.

Related books & courses
Available now on SitePoint Premium

Preview for $1