PHP Secure Application
    Development
 Robert van der Linde
     Vianen, 22 april 2008
Wie ben ik

             • Robert van der Linde

             • 5 jaar ervaring met
               PHP

             • Zen...
PHP is veilig
Ongetrainde ontwikkelaars niet
PHP  Secure application development

 • PHP legt geen verplichtingen op
   aan ontwikkelaars

 • PHP bevat krachtige compo...
Agenda: Owasp top 5

• Remote Code Execution
• Cross-site scripting (XSS)
• SQL Injection
• File system attacks
• PHP Conf...
OWASP top 5: Remote Code Exectution




                         
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Php Secure Application Development   Robert Van Der Linde
Upcoming SlideShare
Loading in …5
×

Php Secure Application Development Robert Van Der Linde

2,412 views

Published on

Published in: Economy & Finance, Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
2,412
On SlideShare
0
From Embeds
0
Number of Embeds
82
Actions
Shares
0
Downloads
46
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Php Secure Application Development Robert Van Der Linde

  1. 1. PHP Secure Application Development Robert van der Linde Vianen, 22 april 2008
  2. 2. Wie ben ik • Robert van der Linde • 5 jaar ervaring met PHP • Zend Certified Engineer • Oprichter PaSS-PHP Kerngroep
  3. 3. PHP is veilig Ongetrainde ontwikkelaars niet
  4. 4. PHP Secure application development • PHP legt geen verplichtingen op aan ontwikkelaars • PHP bevat krachtige componenten die ontwikkelaars kunnen gebruiken om veilige applicaties te ontwikkelen
  5. 5. Agenda: Owasp top 5 • Remote Code Execution • Cross-site scripting (XSS) • SQL Injection • File system attacks • PHP Configuration
  6. 6. OWASP top 5: Remote Code Exectution  

×