[Dshield] PHP Hardening

warwick ackfin warwick7th at gmail.com
Mon Mar 31 18:26:45 GMT 2008


Greetings all,
   Looks like we will be pushing an Apache/PHP/MySql app out into the wild
shortly.  Obviously, such a beast can't go out without something reasonably
robust to protect it from itself.  I started looking into some PHP Hardening
techniques and Suhosin comes recommended by some of our sister/brother
organizations.  Anyone have any thoughts on Suhosin or other PHP hardening
apps/techniques?

http://www.hardened-php.net/suhosin/index.html

Warwick


More information about the list mailing list