darthcamaro writes “More than 60 bugs were reported in PHP over the last 30 days by the Month of PHP Security project. Most of the flaws, however, are ones that developers themselves can protect against with proper coding practices, according to Andi Gutmans, CEO of commercial PHP vendor Zend. He argues that PHP security is a matter of setting expectations. In his view, PHP — like all development languages — is only as secure as the code developers write with it. ‘People should not expect PHP to be able to enforce security boundaries on a developer [who] has permissions to run custom PHP code,’ Gutmans said. ‘It’s an inherently flawed scenario — and it’s the wrong layer to protect in. People must rely on properly configured OS-level permissions for securing against untrusted developers.’ Gutmans also praised the MOPS effort for elevating the profile of PHP security throughout the community, and for responsibly alerting the PHP project first with the bugs they found.”
Read more of this story at Slashdot.
Link to the original site
The Zend Framework team is pleased to announce the immediate availability of
the 1.9.6 release. This release is the sixth maintenance release in the 1.9
series, and includes more than 60 bugfixes, most of them from this month’s
bug hunt days, held last Thursday and Friday.
You may download it from the Zend Framework site .
As Chris Jones briefly mentions and this press release discusses in more detail, Zend and Oracle have joined together to make it even easier for those using Oracle to also use Zend Server as their platform.
The Zend Framework team is pleased to announce the immediate availability of
the 1.9.5 release. This release is the fifth maintenance release in the 1.9
series, and includes almost 30 bugfixes, many of them from this month’s bug
hunt days.
You may download it from the Zend Framework site .
This is it! It’s day 1 of ZendCon. Opening Keynote, Evening Reception, and much more, plus today’s daily Video Blog for you:
Link to the original site
The Zend Framework team is pleased to announce the immediate availability of
the 1.9.4 release. This release is the fourth maintenance release in the 1.9
series.
You may download it from the Zend Framework site .
Link to the original site
Ever got lost in a sea of code, overwhelmed by the complexity of your application? Good news, there’s an app for that!
Visualize, navigate and search PHP code with nWire for PHP, a plugin for Eclipse PDT and Zend Studio 7. nWire provides innovative code analysis for large scale and enterprise PHP applications, enabling significant development cost reduction.
Link to the original site
In a new post to his PHP in Action blog Dagfinn asks the question “is bad code good for you?” He wonders if bad code really is a good thing and how it can be split out from the good parts of your application.
Link to the original site
In a recent post to his blog Rafael Dohms reminds readers to not forget about the security of their applications because it can be “a huge mistake which can take a turn for the worse.”
Link to the original site
Like most developers, I’ve known for a while that PHP comes with GD support for basic image generation and processing tasks, and I’ve even used it on occasion to dynamically create images. However, what I didn’t know was that, hidden in PECL, is an extension to the GraphicsMagick library, which allows for all kinds of sophisticated image operations and effects. In this article, I’ll introduce you to ext/gmagick, showing you some of the cool things it can do for you (and your images).
Link to the original site