mastodon.nl is part of the decentralized social network powered by Mastodon.
Mastodon voor de Nederlandse community - door de Nederlandse community - in stand gehouden door Stichting Activityclub

Server stats:

4.5K
active users

Learn more

Ok folks, I'm speaking at ndc-security.com in a few weeks, "In Defence of PHP".

What are your favourite PHP security features found in Core PHP and/or Frameworks you use?
What about 3rd party packages?
What security tips would you give PHP newbies?
#PHP #Laravel #Security #NDC #NDCSecurity

NDCNDC Security 2024 | Security Conference for Software DevelopersNDC Security 2024 is a 4-Day Event for Software Developers with a focus on Security. 8-11 January 2024 - Radisson Blu Scandinavia Hotel.
Lennart Hengstmengel

@valorin don't roll your own security solutions. Use trusted and established libs instead. If you use a framework like laravel, USE the framework. Use strong passwords and app keys, everywhere. Don't commit any sensitive things to git, ever. Learn how to use db seeding so you don't have to develop/test with real data. Never trust any user input. Validate/sanitize/escape properly. Use signed urls when applicable. Make sure you are familiar with at least the owasp top 10.

@valorin it took some effort to cram this list into 500 characters 😅. Maybe I should write a blog about this.

@lhengstmengel Awesome list, thanks!

Definitely write that blog post. 🙂