{"id":1516,"date":"2005-07-13T10:05:27","date_gmt":"2005-07-13T08:05:27","guid":{"rendered":"https:\/\/www.fullo.net\/blog\/index.php\/archives\/2005\/07\/13\/php-security\/"},"modified":"2005-07-13T10:05:27","modified_gmt":"2005-07-13T08:05:27","slug":"php-security","status":"publish","type":"post","link":"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/","title":{"rendered":"php security"},"content":{"rendered":"<p>su <a href=\"http:\/\/www.hardened-php.net\/index.51.html\">Hardened-PHP <\/a>e sul <a href=\"http:\/\/shiflett.org\/archive\/128\">blog di Shiflett<\/a> si discute di possibili bug nella <a href=\"http:\/\/phpsec.org\/projects\/guide\/\">guida alla programmazione sicura<\/a> pubblicata dallo stesso Shiflett per il phpSec Consortium<\/p>\n<p>ciuaz<\/p>\n","protected":false},"excerpt":{"rendered":"<p>su Hardened-PHP e sul blog di Shiflett si discute di possibili bug nella guida alla programmazione sicura pubblicata dallo stesso Shiflett per il phpSec Consortium ciuaz<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[9],"tags":[2248,357,307],"class_list":["post-1516","post","type-post","status-publish","format-standard","hentry","category-php","tag-php","tag-phpsec","tag-sicurezza"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.5 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>php security - Fullo<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"php security - Fullo\" \/>\n<meta property=\"og:description\" content=\"su Hardened-PHP e sul blog di Shiflett si discute di possibili bug nella guida alla programmazione sicura pubblicata dallo stesso Shiflett per il phpSec Consortium ciuaz\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/\" \/>\n<meta property=\"og:site_name\" content=\"Fullo\" \/>\n<meta property=\"article:published_time\" content=\"2005-07-13T08:05:27+00:00\" \/>\n<meta name=\"author\" content=\"Francesco Fullone\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@fullo\" \/>\n<meta name=\"twitter:site\" content=\"@fullo\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Francesco Fullone\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/07\\\/13\\\/php-security\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/07\\\/13\\\/php-security\\\/\"},\"author\":{\"name\":\"Francesco Fullone\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"headline\":\"php security\",\"datePublished\":\"2005-07-13T08:05:27+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/07\\\/13\\\/php-security\\\/\"},\"wordCount\":28,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"keywords\":[\"php\",\"phpsec\",\"sicurezza\"],\"articleSection\":[\"php\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/07\\\/13\\\/php-security\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/07\\\/13\\\/php-security\\\/\",\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/07\\\/13\\\/php-security\\\/\",\"name\":\"php security - Fullo\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#website\"},\"datePublished\":\"2005-07-13T08:05:27+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/07\\\/13\\\/php-security\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/07\\\/13\\\/php-security\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/07\\\/13\\\/php-security\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"php security\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/\",\"name\":\"Fullo\",\"description\":\"nulla e&#039; impossibile per chi non lo deve fare!\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\",\"name\":\"Francesco Fullone\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"width\":622,\"height\":622,\"caption\":\"Francesco Fullone\"},\"logo\":{\"@id\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\"},\"sameAs\":[\"http:\\\/\\\/www.fullo.net\",\"https:\\\/\\\/www.linkedin.com\\\/in\\\/fullo\",\"https:\\\/\\\/x.com\\\/fullo\"],\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/author\\\/fullo\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"php security - Fullo","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/","og_locale":"en_US","og_type":"article","og_title":"php security - Fullo","og_description":"su Hardened-PHP e sul blog di Shiflett si discute di possibili bug nella guida alla programmazione sicura pubblicata dallo stesso Shiflett per il phpSec Consortium ciuaz","og_url":"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/","og_site_name":"Fullo","article_published_time":"2005-07-13T08:05:27+00:00","author":"Francesco Fullone","twitter_card":"summary_large_image","twitter_creator":"@fullo","twitter_site":"@fullo","twitter_misc":{"Written by":"Francesco Fullone"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/#article","isPartOf":{"@id":"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/"},"author":{"name":"Francesco Fullone","@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"headline":"php security","datePublished":"2005-07-13T08:05:27+00:00","mainEntityOfPage":{"@id":"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/"},"wordCount":28,"commentCount":0,"publisher":{"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"keywords":["php","phpsec","sicurezza"],"articleSection":["php"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/","url":"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/","name":"php security - Fullo","isPartOf":{"@id":"https:\/\/www.fullo.net\/blog\/#website"},"datePublished":"2005-07-13T08:05:27+00:00","breadcrumb":{"@id":"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.fullo.net\/blog\/2005\/07\/13\/php-security\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.fullo.net\/blog\/"},{"@type":"ListItem","position":2,"name":"php security"}]},{"@type":"WebSite","@id":"https:\/\/www.fullo.net\/blog\/#website","url":"https:\/\/www.fullo.net\/blog\/","name":"Fullo","description":"nulla e&#039; impossibile per chi non lo deve fare!","publisher":{"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.fullo.net\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":["Person","Organization"],"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c","name":"Francesco Fullone","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","url":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","contentUrl":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","width":622,"height":622,"caption":"Francesco Fullone"},"logo":{"@id":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1"},"sameAs":["http:\/\/www.fullo.net","https:\/\/www.linkedin.com\/in\/fullo","https:\/\/x.com\/fullo"],"url":"https:\/\/www.fullo.net\/blog\/author\/fullo\/"}]}},"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p3OSc1-os","jetpack_likes_enabled":true,"jetpack-related-posts":[{"id":1652,"url":"https:\/\/www.fullo.net\/blog\/2005\/09\/16\/phpworks-slide\/","url_meta":{"origin":1516,"position":0},"title":"php|works slide","author":"Francesco Fullone","date":"16\/09\/2005","format":false,"excerpt":"Iniziano ad essere pubblicate le prime slide del php|works: Chris Shiflett ha messo sul suo sito la versione pdf e quella flash dell'intervento: PHP Security by example Ilia Alshanetsky invece ha parlato di php5 ed i webservice Wez Furlong di PDO ciuaz","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1511,"url":"https:\/\/www.fullo.net\/blog\/2005\/07\/11\/php-news-2\/","url_meta":{"origin":1516,"position":1},"title":"php news&#8230;","author":"Francesco Fullone","date":"11\/07\/2005","format":false,"excerpt":"notizie a caso raccolte nel weekend trust no one, Zeev Suraski spiega perch\u00e8 non bisogna fidarsi delle variabili HTTP* all'interno della global _SERVER La comunit\u00e0 di Drupal si ritrova senza server, chiede 3000 Dollari per acquistarne uno nuovo ed ora sta valutando di far partire una fondazione per spendere i\u2026","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1799,"url":"https:\/\/www.fullo.net\/blog\/2005\/12\/05\/zend-framework-review\/","url_meta":{"origin":1516,"position":2},"title":"Zend Framework review","author":"Francesco Fullone","date":"05\/12\/2005","format":false,"excerpt":"Su phpDeveloper c'\u00e8 una recensione abbastanza accurata sullo Zend Framework. Sembra che ci siano alcuni aspetti molto interessanti nel framework come un motore di ricerca interno simile a lucene del progetto Apache, la non necessit\u00e0 di doversi appoggiare a mod_rewrite ed un dataobject layer per accedere ai dbms. [update] ne\u2026","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":954,"url":"https:\/\/www.fullo.net\/blog\/2004\/07\/31\/phplinks-security-tutorial\/","url_meta":{"origin":1516,"position":3},"title":"php::Links(&#8216; security tutorial &#8216;);","author":"Francesco Fullone","date":"31\/07\/2004","format":false,"excerpt":"Chris Shiflett delivered his tutorial armed with 80 printed workbooks that was apparently insufficient to meet the needs of the gathering at Salon F. As Chris claims, his workbook for the tutorial is likely the most complete source of PHP security information and best practices available. If you weren't one\u2026","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1251,"url":"https:\/\/www.fullo.net\/blog\/2005\/02\/05\/phpsec\/","url_meta":{"origin":1516,"position":4},"title":"php|sec","author":"Francesco Fullone","date":"05\/02\/2005","format":false,"excerpt":"dopo la mailing list promossa da php|architect nasce il PHP Security Consortium, che si occuper\u00e0 di fare formazione e redigere documenti sulla sicurezza delle applicazioni scritte in php. NEW YORK, NY - January 31, 2005 - An international group of PHP experts today announced the official launch of the PHP\u2026","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":511,"url":"https:\/\/www.fullo.net\/blog\/2003\/10\/16\/phplinks-phparchitect-ottobre\/","url_meta":{"origin":1516,"position":5},"title":"php::Links(&#8216; php|architect ottobre &#8216;)","author":"Francesco Fullone","date":"16\/10\/2003","format":false,"excerpt":"\u00e8 uscito il numero di ottobre di php|architect, questo mese si parla di:Migrating from MySQL to PostgreSQL PostgreSQL, often known simply as the \"other open-source database\" still offers some significant enterprise-level advantages over the very quick MySQL when developing more data-intensive applications. Rick Morris examines the reasons for migrating to\u2026","rel":"","context":"In &quot;tecnologia&quot;","block_context":{"text":"tecnologia","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts\/1516","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/comments?post=1516"}],"version-history":[{"count":0,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts\/1516\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/media?parent=1516"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/categories?post=1516"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/tags?post=1516"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}