<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: PHP security (or the lack thereof)

Re: PHP security (or the lack thereof)

From: Kevin Waterson <kevin_at_oceania.net>
Date: Thu, 29 Jun 2006 10:44:29 +1000

This one time, at band camp, "Geo." <geoincidents_at_nls.net> wrote:

> There are lots of web programs written in perl, asp, even cold fusion. But
> when I watch the security lists I see exploit after exploit for web
> applications and the vast majority of them have one thing in common, they
> are written in PHP.

There are lots of operating systems out there and whin I watch the security lists
I see exploit after expooit for applications and the vast majority of them have
one thing in common, they all run on MS.

My point? You are building straw men.

Kevin

-- 
"Democracy is two wolves and a lamb voting on what to have for lunch. 
Liberty is a well-armed lamb contesting the vote."

Received on Jul 01 2006

This message: [ Message body ]
Next message: Schmehl, Paul L: "RE: [Full-disclosure] Browser bugs hit IE, Firefox today (SANS)"
Previous message: xzerox_at_linuxmail.org: "phpBB 2.0.21 Full Path Disclosure"
Next in thread: Dan Falconer: "Re: PHP security (or the lack thereof)"
Maybe reply: Dan Falconer: "Re: PHP security (or the lack thereof)"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos