Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.

  • Apple
  • Android
  • Windows Phone
  • Android

To get the free app, enter your email address or mobile phone number.

Securing PHP Web Applications 1st Edition

4 out of 5 stars 5 customer reviews
ISBN-13: 978-0321534347
ISBN-10: 0321534344
Why is ISBN important?
ISBN
This bar-code number lets you verify that you're getting exactly the right version or edition of a book. The 13-digit and 10-digit formats both work.
Scan an ISBN with your phone
Use the Amazon App to scan ISBNs and compare prices.
Have one to sell? Sell on Amazon
Buy used On clicking this link, a new layer will be open
$12.99 On clicking this link, a new layer will be open
Buy new On clicking this link, a new layer will be open
$24.41 On clicking this link, a new layer will be open
More Buying Choices
16 New from $20.42 15 Used from $12.99
Free Two-Day Shipping for College Students with Amazon Student Free%20Two-Day%20Shipping%20for%20College%20Students%20with%20Amazon%20Student


Save Up to 90% on Textbooks Textbooks
$24.41 FREE Shipping on orders over $35. Only 1 left in stock (more on the way). Ships from and sold by Amazon.com. Gift-wrap available.

Frequently Bought Together

  • Securing PHP Web Applications
  • +
  • Essential PHP Security
  • +
  • Web Security Testing Cookbook: Systematic Techniques to Find Problems Fast
Total price: $79.11
Buy the selected items together

Editorial Reviews

From the Back Cover

Easy, Powerful Code Security Techniques for Every PHP Developer Hackers specifically target PHP Web applications. Why? Because they know many of these apps are written by programmers with little or no experience or training in software security." Don't be victimized. Securing PHP Web Applications" will help you master the specific techniques, skills, and best practices you need to write rock-solid PHP code and harden the PHP software you're already using. Drawing on more than fifteen years of experience in Web development, security, and training, Tricia and William Ballad show how security flaws can find their way into PHP code, and they identify the most common security mistakes made by PHP developers. The authors present practical, specific solutions-techniques that are surprisingly easy to understand and use, no matter what level of PHP programming expertise you have. "Securing PHP Web Applications" covers the most important aspects of PHP code security, from error handling and buffer overflows to input validation and filesystem access. The authors explode the myths that discourage PHP programmers from attempting to secure their code and teach you how to instinctively write more secure code without compromising your software's performance or your own productivity. Coverage includes
  • Designing secure applications from the very beginning-and plugging holes in applications you can't rewrite from scratch
  • Defending against session hijacking, fixation, and poisoning attacks that PHP can't resist on its own
  • Securing the servers your PHP code runs on, including specific guidance for Apache, MySQL, IIS/SQL Server, and more
  • Enforcing strict authentication and making the most of encryption
  • Preventing dangerous cross-site scripting (XSS) attacks
  • Systematically testing yourapplications for security, including detailed discussions of exploit testing and PHP test automation
  • Addressing known vulnerabilities in the third-party applications you're already running
Tricia and William Ballad demystify PHP security by presenting realistic scenarios and code examples, practical checklists, detailed visuals, and more. Whether you write Web applications professionally or casually, or simply use someone else's PHP scripts, you need this book-and you need it now, before the hackers find you!

About the Author

Tricia Ballad spent several years as a Web applications developer on the LAMP (Linux, Apache, MySQL, PHP/Perl) platform before becoming a full-time writer and technical editor. She currently writes online courseware on various technology topics.

 

William Ballad has worked in every aspect and at all levels of information technology, from hardware maintenance at a small mom-and-pop ISP to architect of Windows-based and heterogeneous networks at some of the world’s largest corporations. An active member of the IT security community for many years, he recently led an effort to counter an international hacker group exploiting OptionCart, a widely used e-commerce system.

 

The Ballads have collaborated on several Web development books, including PHP & MySQL Web Development All-in-One Desk Reference for Dummies (Wiley Publishing, 2008).

NO_CONTENT_IN_FEATURE



Product Details

  • Paperback: 336 pages
  • Publisher: Addison-Wesley Professional; 1 edition (December 26, 2008)
  • Language: English
  • ISBN-10: 0321534344
  • ISBN-13: 978-0321534347
  • Product Dimensions: 7 x 0.7 x 9.2 inches
  • Shipping Weight: 1.1 pounds (View shipping rates and policies)
  • Average Customer Review: 4.0 out of 5 stars  See all reviews (5 customer reviews)
  • Amazon Best Sellers Rank: #1,158,899 in Books (See Top 100 in Books)

More About the Author

I make stuff up.

Then I write it down. I publish the good parts.

I never really grew out of playing pretend or sitting cross-legged on the rug for storytime. Depending on my mood, I'm either four years old or eighteen or eighty.

I like cats. My cat told me so.

I geek out. A lot. And I'm really jazzed that geekery has widened to include more than Linux and gaming. (Not that there's anything wrong with Linux or gaming. But there's more out there, you know?) So what do I geek out on?

Food. I like really good, really interesting food. Especially food that doesn't freak out my overactive immune system. Stupid allergies!

Art. But only the art I like. The art that tells me stories. Art that's just...there...being art...doesn't really excite me. Yeah, I know, I just don't understand it. Whatever. Dragons, Fairies, Unicorns, and landscapes with paths to somewhere...Good Stuff. Random shapes that don't make any sense? Not so much.

Travel. Not the "crash on my sister's couch" kind of travel. Really nice resort with on-property spa travel. I would totally switch places with Samantha Brown.

Historically Accurate Gowns. If I thought I could get away with it, I'd probably dress like it was 1895. Or 1137. Or any time in between. What can I say? Clothes were prettier then (at least if you were wealthy enough to afford the good stuff)!

Old Houses. Especially Victorians. And castles. Well...replica castles with modern insulation and plumbing.

Oh - and I drink absurd amounts of coffee.

Customer Reviews

Top Customer Reviews

Format: Paperback
Securing PHP Web Applications is a great book for any PHP developer with an interest in writing better web applications. It covers a wide range of security topics that every developer should be familiar with. It would be useful for anyone hiring a PHP developer to know the concepts outlined in this book to aid in assessing a developers ability. The book introduced me to some new methods of testing web applications that I had not heard of before. Not the best book to hand to a security professional but a great book to hand to any developer lacking in the security department.
Comment 5 of 6 people found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Paperback
This book is incredible. I'm always on the search for books for my beginning web programming students that can be understood by folks who will probably never have a CS degree. The hunt is often very disappointing; so, this book is an great find. The code examples start with the common code someone might use and show piece-by-piece how to make the code more secure. The book doesn't make any false promises of total security, but it explains in pleasant, easy-to-understand language why each step should be taken. Hip, hip, hurray for the authors!
Comment 3 of 4 people found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Paperback Verified Purchase
This book sucks, I don't know why people gave it even 4 stars. Most of the book is filled with random filler material such as setting permissions for Windows users. Yes, that's right... Windows users. Who in the hell uses a Windows server for their PHP web applications?! Why is a book about security using a Windows server in the first place?! It barely has any code in it and just a few tidbits that saved it from a one star review. They might as well have titled this "Tinkering with Windows Settings (and some PHP)." So annoying.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Kindle Edition Verified Purchase
Very nice and impressive among many books I have read on my application security and more on my own business.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Paperback Verified Purchase
It is a very good book which covers all aspects of creating a secure PHP web application
Comment 1 of 2 people found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse

Set up an Amazon Giveaway

Amazon Giveaway allows you to run promotional giveaways in order to create buzz, reward your audience, and attract new followers and customers. Learn more
Securing PHP Web Applications
This item: Securing PHP Web Applications
Price: $24.41
Ships from and sold by Amazon.com

Want to discover more products? Check out these pages to see more: computer security, computer network