Mailing List Archive
tlug.jp
Mailing List
tlug archive
tlug Mailing List Archive
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] Do you whitelist or blacklist utf-8?
- Date: Thu, 24 Feb 2011 10:00:39 +0100
- From: Josh Glover <jmglov@example.com>
- Subject: Re: [tlug] Do you whitelist or blacklist utf-8?
- References: <4D639689.1010302@example.com> <4D63EFBC.1020900@example.com> <4D64C5DD.1040607@example.com> <4D64CB49.10906@example.com> <4D652AF5.10304@example.com> <4D655712.1090608@example.com> <37687.61.213.3.170.1298510044.squirrel@example.com> <4D661A15.8010009@example.com>
On 24 February 2011 09:43, Darren Cook <darren@example.com> wrote: >> And, yeah, for better security, don't use PHP :) > > Do you have any evidence to support that statement? http://www.google.com/search?aq=f&sourceid=chrome&ie=UTF-8&q=bugtraq+php http://www.google.com/search?aq=f&sourceid=chrome&ie=UTF-8&q=bugtraq+perl An over-simplification to be sure, but notice that PHP has an order of magnitude more hits. > Security always seems, to me, to be dominated by the programmer's > understanding of security issues; language features are quite minor. > I.e. the same programmer will write safe or dangerous code whichever > language he uses. That is almost certainly true. At the same time, it is possible for the security-aware programmer's system to be compromised by a language- or platform-specific vulnerability, and PHP / mod_php have quite the history of said exploits. -- Cheers, Josh
- Follow-Ups:
- Re: [tlug] Do you whitelist or blacklist utf-8? [SOLVED]
- From: Dave M G
- Re: [tlug] Do you whitelist or blacklist utf-8? [SOLVED]
- References:
- [tlug] Do you whitelist or blacklist utf-8?
- From: Dave M G
- Re: [tlug] Do you whitelist or blacklist utf-8?
- From: Shmuel Fomberg
- Re: [tlug] Do you whitelist or blacklist utf-8?
- From: Dave M G
- Re: [tlug] Do you whitelist or blacklist utf-8?
- From: Shmuel Fomberg
- Re: [tlug] Do you whitelist or blacklist utf-8?
- From: Dave M G
- Re: [tlug] Do you whitelist or blacklist utf-8?
- From: Shmuel Fomberg
- Re: [tlug] Do you whitelist or blacklist utf-8?
- From: Nikolay Elenkov
- Re: [tlug] Do you whitelist or blacklist utf-8?
- From: Darren Cook
- [tlug] Do you whitelist or blacklist utf-8?
- Prev by Date: Re: [tlug] Do you whitelist or blacklist utf-8?
- Next by Date: Re: [tlug] Do you whitelist or blacklist utf-8?
- Previous by thread: Re: [tlug] Do you whitelist or blacklist utf-8?
- Next by thread: Re: [tlug] Do you whitelist or blacklist utf-8? [SOLVED]
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |