March 2009

Getting Started With Zend Framework

Posted by Dave on March 22, 2009 in zend framework

The Zend Framework library is based around the MVC (Model, View, Controller) and Front Controller design patterns. The Front Controller is the point of entry for all requests that are NOT being served up directly by your web server. Such requests include style sheets, javascript, images and other static files. Zend Framework implements the front […]

Zend Filter StripTags XSS Vulnerability

Posted by Dave on March 20, 2009 in zend framework

Just a heads up to those using the Zend Framework. Wil Sinclair posted the following to the Zend Framework announcements mailing list:
The Zend Framework team was recently notified of an XSS attack vector in its Zend_Filter_StripTags class. Zend_Filter_StripTags offers the ability to strip HTML tags from text, but also to selectively choose which tags and […]

Coding Mistakes PHP Newbies Make

Posted by Dave on March 11, 2009 in php

1. Never trust user input! Doing so can lead to security issues such a hijacked sessions, SQL injection and your entire site being compromised. This goes for all of the PHP superglobals such as $_SERVER and not just $_GET, $_POST and $_REQUEST arrays. The only exception would be the $_SESSION superglobal as this persists on […]

Analyze your Typing!

Posted by Dave on March 7, 2009 in whatevs

I analyzed my blog with Typealyzer and it says I am of the type ISTP - The Mechanics.
The independent and problem-solving type. They are especially attuned to the demands of the moment are masters of responding to challenges that arise spontaneously. They generally prefer to think things out for themselves and often avoid inter-personal conflicts.
The […]