[转载]PHP Security Guide(页 1) - 脚本程序设计{ All Kinds of Scripts } - 面包作坊[ PHP ] - 邪恶八进制信息安全团队技术讨论组努力为祖国的信息安全撑起一片蓝天

ring04h 2007-2-25 15:05

[转载]PHP Security Guide

信息来源: PHPSEC.ORG<dl><dt>Table of Contents </dt><dt><a href="1.html">1. Overview</a> </dt><dd><dl><dt><a href="1.html#1.1">1.1 What Is Security?</a> </dt><dt><a href="1.html#1.2">1.2 Basic Steps</a> </dt><dt><a href="1.html#1.3">1.3 Register Globals</a> </dt><dt><a href="1.html#1.4">1.4 Data Filtering</a> </dt><dd><dl><dt><a href="1.html#1.4.1">1.4.1 The Dispatch Method</a> </dt><dt><a href="1.html#1.4.2">1.4.2 The Include Method</a> </dt><dt><a href="1.html#1.4.3">1.4.3 Filtering Examples</a> </dt><dt><a href="1.html#1.4.4">1.4.4 Naming Conventions</a> </dt><dt><a href="1.html#1.4.5">1.4.5 Timing</a> </dt></dl></dd><dt><a href="1.html#1.5">1.5 Error Reporting</a> </dt></dl></dd><dt><a href="2.html">2. Form Processing</a> </dt><dd><dl><dt><a href="2.html#2.1">2.1 Spoofed Form Submissions</a> </dt><dt><a href="2.html#2.2">2.2 Spoofed HTTP Requests</a> </dt><dt><a href="2.html#2.3">2.3 Cross-Site Scripting</a> </dt><dt><a href="2.html#2.4">2.4 Cross-Site Request Forgeries</a> </dt></dl></dd><dt><a href="3.html">3. Databases and SQL</a> </dt><dd><dl><dt><a href="3.html#3.1">3.1 Exposed Access Credentials</a> </dt><dt><a href="3.html#3.2">3.2 SQL Injection</a> </dt></dl></dd><dt><a href="4.html">4. Sessions</a> </dt><dd><dl><dt><a href="4.html#4.1">4.1 Session Fixation</a> </dt><dt><a href="4.html#4.2">4.2 Session Hijacking</a> </dt></dl></dd><dt><a href="5.html">5. Shared Hosts</a> </dt><dd><dl><dt><a href="5.html#5.1">5.1 Exposed Session Data</a> </dt><dt><a href="5.html#5.2">5.2 Browsing the Filesystem</a> </dt></dl></dd><dt><a href="6.html">6. About</a> </dt><dd><dl><dt><a href="6.html#6.1">6.1 About This Guide</a> </dt><dt><a href="6.html#6.2">6.2 About the PHP Security Consortium</a> </dt><dt><a href="6.html#6.3">6.3 More Information</a> </dt></dl></dd></dl>

页: [1]

邪恶八进制信息安全团队技术讨论组's Archiver

[转载]PHP Security Guide