Mailinglist Archive

PHP Security From The Inside
By Federico Biancuzzi

Stefan Esser is the founder of both the Hardened-PHP Project and the PHP
Security Response Team (which he recently left). Federico Biancuzzi
discussed with him how the PHP Security Response Team works, why he
resigned from it, what features he plans to add to his own hardening
patch, the interaction between Apache and PHP, the upcoming "Month of
PHP bugs" initiative, and common mistakes in the design of well-known
applications such as WordPress.

http://www.securityfocus.com/columnists/432