Category Archives: Security

Top PHP security blunders

Posted on January 21, 2012 by Paul

Whilst looking through my archive of technology blog posts, I came across this article on SitePoint: Top 7 PHP Security Blunders. Although written in 2005, most of the points made are still relevant today, and it is well worth a … Continue reading

Posted in Security | Comments Off

Apache access control by IP address

Posted on January 30, 2011 by Paul

If you’re running a PHP application, particularly a web service, you may want to restrict access based on the client’s IP address. Whilst this is not a fool-proof method of protecting a site, it will probably discourage the majority of … Continue reading

Posted in Apache, Security | Comments Off

WordPress 3.0.4 released

Posted on December 30, 2010 by Paul

WordPress 3.0.4 has been released today and contains an important security update. Everyone is strongly advised to upgrade as soon as possible. More information about the vulnerability can be found at the following links: ~sneak Jon Cave

Posted in Security, WordPress | Comments Off

Special characters in passwords

Posted on January 6, 2010 by Paul

Recently I moved our website at work from one hosting provider to another. As we have several instances of the site (testing, demo, live etc.), each with their own separate database, I moved them one at a time, starting with … Continue reading

Posted in MySQL, Security | Comments Off

Hide PHP version from server headers

Posted on January 1, 2010 by Paul

If you’ve ever examined the headers produced by a server running PHP, you may have seen this amongst them: X-Powered-By: PHP/5.2.12 This little piece of information tells the world that you are running PHP version 5.2.12. Whilst I don’t believe … Continue reading

Posted in Security | Comments Off