Securing PHP Web Applications by Tricia Ballad, William Ballad

The greatest thrill in programming is pounding out code and watching your idea come to life on the screen. As fun as it is to pound the keyboard in a rush of inspiration, the cold, hard reality is that a lot of really bad code gets created that way. If you’re planning to release your code into the wild—even if it’s just on your own Web site—you’ll save yourself a lot of time and headaches if you slow down and do some pencil-and-paper work before you hit the keyboard. That’s what this chapter is all about: guiding you through the preliminary work so that your application is secure from day one. After all, how would you rather fix a security hole—on paper, before you’ve ...