Facebook Twitter Pinterest <Einbetten>
  • Alle Preisangaben inkl. USt

Nur noch 1 auf Lager (mehr ist unterwegs).
Verkauf und Versand durch Amazon. Geschenkverpackung verfügbar.
Essential PHP Security ist in Ihrem Einkaufwagen hinzugefügt worden

Lieferort:
Um Adressen zu sehen, bitte
Oder
Bitte tragen Sie eine deutsche PLZ ein.
Oder
+ EUR 3,00 Versandkosten
Gebraucht: Gut | Details
Verkauft von Second City Books USA
Zustand: Gebraucht: Gut
Kommentar: Ships from the USA.Please allow 2 to 3 weeks for delivery. A copy that has been read, but remains in clean condition. All pages are intact, and the cover is intact. The spine may show signs of wear. Pages can include limited notes and highlighting, and the copy can include "From the library of" labels or previous owner inscriptions. Biggest little used bookstore in the world. Second City Books - the first place to look for second hand books.
Möchten Sie verkaufen?
Zur Rückseite klappen Zur Vorderseite klappen
Hörprobe Wird gespielt... Angehalten   Sie hören eine Hörprobe des Audible Hörbuch-Downloads.
Mehr erfahren
Alle 2 Bilder anzeigen

Essential PHP Security (Englisch) Taschenbuch – 28. Oktober 2005

5.0 von 5 Sternen 2 Kundenrezensionen

Alle 2 Formate und Ausgaben anzeigen Andere Formate und Ausgaben ausblenden
Preis
Neu ab Gebraucht ab
Kindle Edition
"Bitte wiederholen"
Taschenbuch
"Bitte wiederholen"
EUR 29,00
EUR 16,43 EUR 1,96
13 neu ab EUR 16,43 17 gebraucht ab EUR 1,96
click to open popover

Wird oft zusammen gekauft

  • Essential PHP Security
  • +
  • Modern PHP: New Features and Good Practices
Gesamtpreis: EUR 50,99
Die ausgewählten Artikel zusammen kaufen

Es wird kein Kindle Gerät benötigt. Laden Sie eine der kostenlosen Kindle Apps herunter und beginnen Sie, Kindle-Bücher auf Ihrem Smartphone, Tablet und Computer zu lesen.

  • Apple
  • Android
  • Windows Phone

Geben Sie Ihre Mobiltelefonnummer ein, um die kostenfreie App zu beziehen.

Jeder kann Kindle Bücher lesen — selbst ohne ein Kindle-Gerät — mit der KOSTENFREIEN Kindle App für Smartphones, Tablets und Computer.


Produktinformation

Produktbeschreibungen

Pressestimmen

You've heard the nasty stories about PHP sites being wiped off the web by evil hackers? Sadly it's not scare-mongering as it does happen, and as much as we love PHP it needs proper security to keep your site safe from harm. Plenty of PHP books have the odd chapter on security but at last O'Reilly have published a whole volume dedicated to the cause, with all the code you'll need to keep everything in order. Each chapter covers a different aspect of the application, from form processing to database programming and session management. Written in a straight forward style, it's ideal for every PHP user, but at GBP20 you might expect a little more than just 100 pages." .NET, November 2005 "If you write PHP scripts, get a copy" - Alain Williams, news@UK, March 2006

Synopsis

Being highly flexible in building dynamic, database-driven web applications makes the PHP programming language one of the most popular web development tools in use today. It also works beautifully with other open source tools, such as the MySQL database and the Apache web server. However, as more web sites are developed in PHP, they become targets for malicious attackers, and developers need to prepare for the attacks. Security is an issue that demands attention, given the growing frequency of attacks on web sites. "Essential PHP Security" explains the most common types of attacks and how to write code that isn't susceptible to them. By examining specific attacks and the techniques used to protect against them, you will have a deeper understanding and appreciation of the safeguards you are about to learn in this book. In the much-needed (and highly-requested) "Essential PHP Security", each chapter covers an aspect of a web application (such as form processing, database programming, session management, and authentication). Chapters describe potential attacks with examples and then explain techniques to help you prevent those attacks.

Topics covered include: preventing cross-site scripting (XSS) vulnerabilities; protecting against SQL injection attacks; and, complicating session hijacking attempts. You are in good hands with author Chris Shiflett, an internationally-recognized expert in the field of PHP security. Shiflett is also the founder and President of Brain Bulb, a PHP consultancy that offers a variety of services to clients around the world.

Alle Produktbeschreibungen

Welche anderen Artikel kaufen Kunden, nachdem sie diesen Artikel angesehen haben?

Kundenrezensionen

5.0 von 5 Sternen
5 Sterne
2
4 Sterne
0
3 Sterne
0
2 Sterne
0
1 Stern
0
Beide Kundenrezensionen anzeigen
Sagen Sie Ihre Meinung zu diesem Artikel

Top-Kundenrezensionen

Von Amazon Customer am 12. September 2013
Format: Kindle Edition Verifizierter Kauf
Gutes Buch um mehr über die Absicherung von PHP zu erfahren. Allerdings könnte man manche Kapitel anders gestallten und auch auf manche alten Zöpfe verzichten.
Kommentar War diese Rezension für Sie hilfreich? Ja Nein Feedback senden...
Vielen Dank für Ihr Feedback.
Wir konnten Ihre Stimmabgabe leider nicht speichern. Bitte erneut versuchen
Missbrauch melden
Format: Taschenbuch Verifizierter Kauf
;-) hier rmuss man mindestens 16 Wörter schreiben, noch ein Wort noch ein Wort noch ein Wort noch ein Wort
Kommentar War diese Rezension für Sie hilfreich? Ja Nein Feedback senden...
Vielen Dank für Ihr Feedback.
Wir konnten Ihre Stimmabgabe leider nicht speichern. Bitte erneut versuchen
Missbrauch melden

Die hilfreichsten Kundenrezensionen auf Amazon.com (beta)

Amazon.com: 4.0 von 5 Sternen 34 Rezensionen
1 von 1 Kunden fanden die folgende Rezension hilfreich
5.0 von 5 Sternen IT MAY BE SHORT, BUT SIZE DOESN'T MATTER! 7. Oktober 2009
Von Glenn Hostetler - Veröffentlicht auf Amazon.com
Format: Taschenbuch Verifizierter Kauf
The book is only 85 pages long (if you take out the Appendices and filler material). That alone gets it four out of five stars. Well... not really... but there's a lot to be said for producing a book that will actually get read. You can read the whole thing in one bathroom sitting, assuming you just returned from Mexico. By comparison, similar books like "Pro PHP Security" by Chris Snyder and Michael Southwell (also a very good book) are more along the lines of 500 pages and such books are intended as comprehensive reference books rather than tutorials. You'd have to eat at a restaurant in North Korea to get all the way through the Pro PHP Security book. Seriously though - the criticisms of this book primarily pretain to its lack of detail - but I'd rather actually finish a high level book than have a detailed book sit on my shelf unread.

Chris' book is great. It's chocked full of easy to understand explanations and little five line code fragments to demonstrate what he's explaining. Sure enough, if you read the whole thing, you'll understand the essentials of PHP Security. Hey - perhaps that explains the title?

Do I need this book if my company already uses web scanning security software? Yes - you won't understand the problems that those products identify if you don't understand PHP security basics. If you don't understand reported errors, You'll be tempted to ignore or suppress warnings that you don't understand. Chris' book will give you the knowledge that you need in a few easy to follow pages.

There are a few ommissions. They include:

OMISSION #1: The book should mention somewhere that many of the security vulnerabilities it describes are not unique to PHP - especially big ones like cross-site scripting and SQL injection. While PHP has some vulnerabilities that other languages do not (and vis-versa), Java, C#, Ruby, and all the other server-side languages can also be attacked with cross-site scripting, SQL injection, session spoofing, cookie theft, backdoor URLs, etc., etc.

OMISSION #2: The book would have benefited from the addition of a page of system administration best practices to improve security rather than confining itself only to coding best practices. For example, it's easy for developers to accidentally open security holes by making very small changes to the PHP.ini file. A good best practice is to use the operating system to restrict access to that file in the production environment. Or it would have good to see Chris distill role-based security administration policies, logging, or remote procedure call policies down to just the most important principles. He has a knack for filtering out the noise, and if he had added that additional 86th page, I swear I would have read it too.

OMISSION #3: It's worth mentioning how modular design has a very big impact on the number of vulnerabilities inside an application. This is especially important for PHP, because PHP code is often a little more haphazard than code written in other languages - primarily because of the culture that surrounds PHP but also for a few other reasons (we cover those reasons in the PHP Chapter of our own book on the strengths and weaknesses of various technologies).

Bottom line:

These criticisms are very minor. The book is short, easy-to-read, and filled with information that is absolutely essential to know if you are to responsibly deploy a server-side PHP application. Look at the table of contents. If you're not familiar with those terms, you'd better get the book.

Glenn Hostetler
Web Service and SOA Technologies
5.0 von 5 Sternen Loved it! 17. Oktober 2011
Von Darius - Veröffentlicht auf Amazon.com
Format: Taschenbuch Verifizierter Kauf
There were some very good best practices in this book that I immediately adopted. I'm sure most people who would be interested in this book (experienced to advanced developers) have heard many of the best practice concepts in this book before from various sources, however I've yet to see someone develop a method to handling these ideas.

It was a shorter book than I was expecting (yes, that's my goof for not noticing the page count when I purchased it) however I'm glad that I didn't notice that fact before purchasing otherwise I might have overlooked it as more of a reference book rather than a teaching book. I was very happy with the book and would recommend it to anyone interested in some solid best practices for PHP security.
3 von 3 Kunden fanden die folgende Rezension hilfreich
1.0 von 5 Sternen Disappointed... 17. März 2012
Von old_customer - Veröffentlicht auf Amazon.com
Format: Kindle Edition Verifizierter Kauf
This book has 7 chapters (Chapters 2 through 8) devoted to the 7 issues. The material is superficial, it does not cover many, many other issues related to PHP Security.

At best, the whole book feels like a quickly written computer magazine article, not a good, comprehensive book.

Not worth the money. Just do a search for "PHP Security" on the internet and read a few articles and you will know more than this book.
3.0 von 5 Sternen good php security book but not clear at times 16. Mai 2010
Von Andrew M. Pilsky - Veröffentlicht auf Amazon.com
Format: Taschenbuch Verifizierter Kauf
It is a good book, in mu opinion, but not a great one. The author was not clear at times at all and/or was much too terse. One may have to use this book in conjunction with some internet research in order to go over the concepts that were not so well explained. Overall, the book does serve its purpose, which is, i believe, to give a very good overview of the PHP and PHP related security issues, as well as to provide recommendations how to make a PHp application 'more secure'.
1 von 1 Kunden fanden die folgende Rezension hilfreich
5.0 von 5 Sternen Short and sweet. 18. Februar 2013
Von Serj - Veröffentlicht auf Amazon.com
Format: Taschenbuch Verifizierter Kauf
This is an excellent read for anyone, not just those using PHP. The provided information is very nicely laid out with very fluff but good practical understanding and application. A must read for anyone doing any professional programming.
Waren diese Rezensionen hilfreich? Wir wollen von Ihnen hören.