Ok folks, I'm speaking at https://ndc-security.com in a few weeks, "In Defence of PHP".
What are your favourite PHP security features found in Core PHP and/or Frameworks you use?
What about 3rd party packages?
What security tips would you give PHP newbies?
#PHP #Laravel #Security #NDC #NDCSecurity
@valorin don't roll your own security solutions. Use trusted and established libs instead. If you use a framework like laravel, USE the framework. Use strong passwords and app keys, everywhere. Don't commit any sensitive things to git, ever. Learn how to use db seeding so you don't have to develop/test with real data. Never trust any user input. Validate/sanitize/escape properly. Use signed urls when applicable. Make sure you are familiar with at least the owasp top 10.
@valorin it took some effort to cram this list into 500 characters . Maybe I should write a blog about this.
@lhengstmengel Awesome list, thanks!
Definitely write that blog post.