--- Dan Joseph <[EMAIL PROTECTED]> wrote: > I am in the process of wrapping up a site for a friend of mine. > It has logins, searching, account information, etc. I am > wondering, does anyone on the list do any security auditing on > the side? Chris, maybe you?
Yes, but I might not be a good choice, because: 1. I'm pretty booked until mid to late October. 2. I value my time, so I'm not cheap. :-) Do you have any friends who know PHP? Peer reviews are always a good idea, regardless of whether your peers are security experts. There's a lot of information on PHP security readily available on the Web - I've been trying to provide as much as I can, including the PHP Security Workbook: http://shiflett.org/php-security.pdf You can get a few peers to educate themselves prior to review. Hope that helps. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming December 2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
