• Recent Posts

  • Solving NZ’s Business Talent Crisis
  • Zend Studio “Neon” Beta
  • Del.icio.us switches to Symfony
  • Eventfinder Favourites on your blog
  • News Update

• Categories

  • Books
  • Business
  • DPS
  • Eventfinder
  • MySQL
  • Open Source
  • PHP
  • Security
  • Speaking
  • Symfony
  • Zend

• Archives

  • October 2008
  • October 2007
  • August 2007
  • March 2007
  • January 2007
  • November 2006
  • October 2006
  • September 2005
  • August 2005

• Links

  • 37 Signals
  • Eventfinder
  • Kiva
  • NZ PHP Users Group
  • Planet PHP

Ilia Alshanetsky’s book php|architect’s Guide to PHP Security has just been released and I ordered my copy this morning (hopefully early enough to have Ilia’s signature on the inside cover!). As with the other php|architect publications the PDF version is available to purchasers so I downloaded it to whet my appetite while I wait out the estimated 2 weeks for air shipping to New Zealand from Canada.

My first impression is that Ilia’s writing style is easy to read, which is all too often not the case for technical authors. Perhaps this is also something of a reflection on Marco Tabini’s editing prowess as I also found the ZCE Study Guide and of course the regular php|architect magazines themselves relatively easy reading.

As a matter of course the book is rich with guidelines and examples in the standard PHP security areas but goes into much more detail than the best online resources. I’ve only flicked through the pages for half an hour and I’ve already spotted at least half a dozen tips or suggestions I haven’t seen elsewhere. The chapter on Sandboxes and Tar Pits looks particularly interesting and I’ve printed that off to read later.

I’m not sure I’ll be able to refrain from reading through the PDF version before my print copy arrives but when I’ve finished I’ll post my thoughts (without giving too much away!). I’m already happy with my purchase though - if you’re doing any serious work with PHP I’d recommend you check it out.

Comments