Dobrica Pavlinušić's random unstructured stuff
PHP Security: Revision 1

Oxymoron, right? Well for somebody who loves perl so much, it is. Anyway here it is...



One-liners

show phpinfo from shell

echo '<? phpinfo() ?>' | php5

Security scanning

Spike PHP Security Audit Tool

http://developer.spikesource.com/projects/phpsecaudit/

sudo apt-get install php5-xslt