PHP UG: Web Application Security
Nashville PHP User Group — Web Application Security with Jason Orendorff
We all know security is important, but it never seems important right now. The client isn’t worried about it. The users don’t care about it. It’s rarely taught and it’s hard to pick up on the job.
This talk is about filling in the gaps in our understanding of Web security. More than that, it's about how to think about security—and how a good understanding of security can lead to better code overall.
We’ll cover the fundamentals and walk through four major classes of vulnerabilities that are common in real-world web applications, with examples.