Bugtraq mailing list archives

Re: PHP security (or the lack thereof)

From: Kevin Waterson <kevin () oceania net>
Date: Thu, 29 Jun 2006 10:44:29 +1000

This one time, at band camp, "Geo." <geoincidents () nls net> wrote:

There are lots of web programs written in perl, asp, even cold fusion. But
when I watch the security lists I see exploit after exploit for web
applications and the vast majority of them have one thing in common, they
are written in PHP.


There are lots of operating systems out there and whin I watch the security lists
I see exploit after expooit for applications and the vast majority of them have
one thing in common, they all run on MS.

My point? You are building straw men.

Kevin

-- 
"Democracy is two wolves and a lamb voting on what to have for lunch. 
Liberty is a well-armed lamb contesting the vote."

Current thread:

Re: PHP security (or the lack thereof) Kevin Waterson (Jul 01)
- <Possible follow-ups>
- Re: PHP security (or the lack thereof) Dan Falconer (Jul 05)
  - Re: PHP security (or the lack thereof) Darren Reed (Jul 10)