December 2010
Intermediate to advanced
363 pages
12h 21m
English
book
Pro PHP Security: From Application Security Principles to the Implementation of XSS Defenses, Second Edition
by Chris Snyder, Michael Southwell, Thomas Myer
Content preview from Pro PHP Security: From Application Security Principles to the Implementation of XSS Defenses, Second Edition
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
C H A P T E R 12
Safe Execution of System and Remote Procedure Calls
In this chapter, we will explore how to isolate the execution of potentially dangerous system commands and Remote Procedure Calls (RPCs). Up to this point in the book, we've been discussing your PHP applications and the users (both human and otherwise) that interact with it; for the first time we're now veering into the system and environment that your PHP application resides in. We're still talking about your application and the interfaces it makes available to system-level calls and remote procedures.
Because online applications are necessarily exposed to the relatively unfettered, ...