Slashdot Mirror

← Back to Stories (view on slashdot.org)

PHP Security Consortium Launched

Posted by timothy on Monday January 31, 2005 @02:57PM from the floodgates dept.

Chris Shiflett writes "We're happy to announce the official launch of the PHP Security Consortium (PHPSC). Our mission is 'to promote secure programming practices within the PHP community through education and exposition while maintaining high ethical standards.' You can read the official press release or visit us at phpsec.org."

1 of 64 comments (clear)

Min score:

Reason:

Sort:

Re:Good by arkanes · 2005-02-01 10:55 · Score: 4, Interesting

This attitude is in no small part responsible for the generally terrible security of web-based applications. Security is *not* a set of "audited widgets". You have to know what to do and what not to do - there's no magic widget that is going to secure your application. You *can't* write a general purpose, secure widget for exposing files over the internet without the end developer knowing what they're doing.