That is a pretty vague statement that can be very misleading. Last
time I checked you could write secure php scripts, secure the php
environment, and evaluate your programs for security. Also last time
I checked people could write insecure java and perl programs. I think
what christian was looking for was advice for securing a php web
server with multiple users.
marc
--
Marc Ray
FSU Dance
email@hidden
850-645-1996 Office
850-645-1900 Dance Computer Lab
850-644-1277 Fax
On Jan 6, 2006, at 10:24 AM, Danny Hembree wrote:
On Thu, 2006-01-05 at 08:46, Christian Enqvist wrote:
We have a webserver with a couple of customers and they are all using
PHP. Does anyone have any good tips on how to secure PHP (this is when
you start flaming me for not being specific) or if we even have to
worry about it? We have replaced the PHP installation from Apple for
the one that Marc builds at Entropy because we needed support for GD
so this is somewhat of a more general question about OS X Server and
PHP vs Security.
PHP is intended to be a quick and easy way to put up web pages. Security
is not one of it's features. If security is a concern, I would suggest
using Perl or Java.
