Pro PHP Security / Preventing SQL Injection
November 1, 2006[From PHPBuilder]
PHP is an extremely powerful yet easy-to-learn scripting language, affording even relatively inexperienced programmers the opportunity to create complex, dynamic websites. It is, however, notoriously difficult to ensure privacy and security of internet services. In this book, we will provide you with the security background every web developer needs, along with PHP-specific knowledge and code that you can use to protect the integrity of your own applications. We begin with an overview of server security that shows you how to assess privacy in a shared hosting environment, keep developers out of production servers, maintain up-to-date software, provide encrypted channels, and control access to your systems.
The article continues at http://www.phpbuilder.com/columns/ProPHPSecurity_excerpt.php3