Re: web hosting best practices

Relevant Pages

• TSLSA-2005-0059 - multi
  ... Affected versions: Trustix Secure Linux 2.2 ... PHP is an HTML-embedded scripting language. ... use of Rest with FTP servers and Range with HTTP servers to retrieve files ... - New Upstream and Multiple Vendor Security Fixes ...
  (Bugtraq)
• Re: Server compromised Zen-Cart "record company" Exploit
  ... Keep in mind that future versions of PHP will *not* even include a safe-mode ... ... why would you want to run your online business on a server that's got to use safe-mode in order to think they're securing the server? ... And, if it is being used, you shouldn't run your business there, because there will be other security issues to which you'll be vulnerable but never have a clue about it until disaster strikes, because the big picture of security protection has been poorly implemented. ... That said, Zen Cart will install and run even if Safe Mode is active; however, you run the risk of certain features not working with or without notice, and the unexpected appearance of warning or fatal errors while customers are using the site. ...
  (freebsd-questions)
• TSLSA-2007-0017 - multi
  ... Affected versions: Trustix Secure Linux 2.2 ... PHP is an HTML-embedded scripting language. ... SECURITY Fix: Arnaud Giersch has reported a weakness in ELinks, ... The Common Vulnerabilities and Exposures project ...
  (Bugtraq)
• Re: Securing an Email script
  ... request to our sales office. ... Since you do ZERO checking on the values it's nothing BUT security issues. ... very powerful PHP function to validate form fields and other strings - ...
  (comp.lang.php)
• [NEWS] PHP Security Vulnerability in Multipart FORM Data Handling
  ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... The PHP Group has learned of a serious security vulnerability in PHP ... code with the privileges of the web server. ...
  (Securiteam)