Re: Re: Announcement: Releasing CORE GRASP for PHP. An open source, dynamic web application protection system.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 8/22/07, M. Sokolewicz <tularis@xxxxxxx> wrote:
> because such options slow down the execution of every PHP script, even
> though "disabled".

compile time options wouldn't be much of a slowdown.

and in my mind, with CPU power being quite cheap, i could see it being
more valuable to have more bounds checking, security checks, etc, etc.
add that extra couple ms per request...

there's probably a lot more bloat that could be cut down on in place
of a more robust layer of security. PHP has some reputation for being
insecure, mainly due to the people writing crappy apps - but if the
engine itself cut down on allowing those crappy apps it would cut down
on them being exploitable (can't fix the code for them, but perhaps
fix them from being exploited to begin with)

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php


[Index of Archives]     [PHP Home]     [Apache Users]     [PHP on Windows]     [Kernel Newbies]     [PHP Install]     [PHP Classes]     [Pear]     [Postgresql]     [Postgresql PHP]     [PHP on Windows]     [PHP Database Programming]     [PHP SOAP]

  Powered by Linux