addressalign-toparrow-leftarrow-rightbackbellblockcalendarcameraccwcheckchevron-downchevron-leftchevron-rightchevron-small-downchevron-small-leftchevron-small-rightchevron-small-upchevron-upcircle-with-checkcircle-with-crosscircle-with-pluscontroller-playcrossdots-three-verticaleditemptyheartexporteye-with-lineeyefacebookfolderfullheartglobegmailgooglegroupshelp-with-circleimageimagesinstagramFill 1light-bulblinklocation-pinm-swarmSearchmailmessagesminusmoremuplabelShape 3 + Rectangle 1ShapeoutlookpersonJoin Group on CardStartprice-ribbonprintShapeShapeShapeShapeImported LayersImported LayersImported Layersshieldstartickettrashtriangle-downtriangle-uptwitteruserwarningyahoo

Re: [php-49] Re: Developing API books

From: user 7.
Sent on: Sunday, March 15, 2009 9:02 PM
Also, as a word of warning, a good CMS system does a lot of security work for you. Designing strong XSS mitigation requires extensive design work before you even begin the software engineering. And that's just one of the OWASP top ten.

I'd recommend the PHP Architect guide to PHP Security as a good starting point in security design. It's a quick run through web app security basics and all of the examples are in PHP


On Mar 14, 2009, at 2:46 PM, karikas wrote:

Hi Mark,
 
Check out "PHP 5 CMS Framework Development" by Martin Brampton.  Came out last year, and I've been using it to help whip my own custom CMS framework (for real estate web sites) into shape.  If I remember correctly he used to work on Mambo (which then spun off into Joomla) and has since been working on his own CMS, named Aliro.  This book is basically looking back at the way he set things up for Aliro, and while I haven't used all of his suggestions it was very enlightening, and a lot of it applied to my own system.
 
There's a review of it over on PHP Classes: http://www.phpclasses.org/reviews/id/1847193579.html
- Mike

Mike Karikas
Karikas Interactive, LLC
Mobile:[masked]
VM/Fax:[masked]
www.karikas.com
www.piratejokes.net




--
Please Note: If you hit "REPLY", your message will be sent to everyone on this mailing list ([address removed])
This message was sent by karikas ([address removed]) from The Seattle PHP Meetup Group.
To learn more about karikas, visit his/her member profile
To unsubscribe or to update your mailing list settings, click here

Meetup Support: [address removed]
632 Broadway, New York, NY 10012 USA

Our Sponsors

  • PluralSight

    PluralSight subscriptions for developer training

  • O'Reilly

    Disc Code: PCBW is good for 40% off print and 50% off ebooks and videos

  • JetBrains PhpStorm

    Occasional free licenses to raffle off at meetups

  • DynaTrace

    Find yourself, promote yourself, stay true to yourself.

People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy