Leanpub Header

Skip to main content
Go to Leanpub.com

构建安全的PHP应用

因为不确定你的PHP应用是否足够安全而无法安然入睡?读完本书,让我们确保每天能够按时下班回家,并能高枕无忧的做闭目佳人!

Ben.edmunds@gmail.com and 张庆龙
基础安全需要一个高级开发者长年累月的经验累积, 就这样悄然的凝聚在了这本快速易读的手册当中!

This book is a translation into Chinese (Simplified) of Building Secure PHP Apps which was originally written in English

Interested in this book? Show your support by saying what you'd like to pay for it!

$
PDF
EPUB
70
Pages
1,738Words
About

About

About the Book

你有没有想过你的网站多脆弱,多容易攻击? 你是否有信心让你的用户敏感信息更加健壮?

试想在存储用户敏感信息的时候胸有成竹.  不再会泄露任何数据,不再加班到深夜,你的应用足够安全。

在这本简短的书中,我们将在如何保护你的web应用程序安全方面给你清晰可操作的步骤清单.  你还会发现能解决和改善现有遗留问题的解决办法。

简介

几年前我用PHP的CodeIgniter框架写了一个网页程序,但是这个框架并没有内置任何类型的身份验证系统。当然,这并不会难倒像我这样的一个好(懒惰)的开发者,我到处寻找一个靠谱的库来让我的应用拥有健壮的身份验证能力。然而令人失望的是我发现在CodeIgniter上并没有一个简洁、可靠并能满足身份验证需求的库。这让我走向了开发Ion Auth(可以从Github找到)之路,它是为CodeIgniter开发的一款轻量级的身份验证库,并在为网页应用的安全上做了一个长时间的改革迭代,同时也帮助其他开发人员这样做。

多年之后,我们都已经换了很多的框架和语言,但是我仍然对被忽视的基础安全方面保持持续关注。让我们一起改变这个现状吧。我希望能够帮助大家再也不用生活在密码泄露的恐惧中,再不会为恶心的SQL注入而担心,能够轻松的避免那些“黑客”的临幸。让我们都能确保可以每天按时下班回家,并能高枕无忧的做闭目佳人!

主要内容

这本书将会是一本可以在具体项目中进行参考的快速阅读手册。意思是你可以在数个小时内快速看完并在你需要的时候随时查阅。不到百页的内容,主要内容如下:

  • 不相信任何用户,格式化所有的输入!
  • HTTPS/SSL/BCA/JWH/SHA 等其他的随机序列及他们的实际问题
  • 为每个人存储加密的密码
  • 身份验证,访问控制和安全文件处理
  • 跨站脚本、跨站请求伪造和其他流行的"黑客技术"

这是一项一直在进行的任务,所以如果你想知道更多我们没有提到的内容可以联系我。

声明

本书的定价为新书上架暂时定价,以后有可能发生浮动,另外如果有学生想要阅读本书,可以向我索要7折的优惠码!

Share this book

Categories

Software

Feedback

Email the Authors
This book is a translation into Chinese (Simplified) of Building Secure PHP Apps which was originally written in English

Author

About the Authors

Ben.edmunds@gmail.com

Ben Edmunds leads development teams to create cutting-edge web and mobile applications. He is an active leader, developer, and speaker in various development communities, especially the CodeIgniter and Laravel PHP framework communities. He has been developing software professionally for over 10 years and in that time has worked on everything from robotics to government projects.  

PHP Town Hall podcast co-host.  Portland PHP Usergroup co-organizer.  Open source advocate.

张庆龙

Reliable Chinese Guy,

Humorous programmer,

Fishing man,

Live in Beijing.China

The Leanpub 60 Day 100% Happiness Guarantee

Within 60 days of purchase you can get a 100% refund on any Leanpub purchase, in two clicks.

Now, this is technically risky for us, since you'll have the book or course files either way. But we're so confident in our products and services, and in our authors and readers, that we're happy to offer a full money back guarantee for everything we sell.

You can only find out how good something is by trying it, and because of our 100% money back guarantee there's literally no risk to do so!

So, there's no reason not to click the Add to Cart button, is there?

See full terms...

Earn $8 on a $10 Purchase, and $16 on a $20 Purchase

We pay 80% royalties on purchases of $7.99 or more, and 80% royalties minus a 50 cent flat fee on purchases between $0.99 and $7.98. You earn $8 on a $10 sale, and $16 on a $20 sale. So, if we sell 5000 non-refunded copies of your book for $20, you'll earn $80,000.

(Yes, some authors have already earned much more than that on Leanpub.)

In fact, authors have earned over $14 million writing, publishing and selling on Leanpub.

Learn more about writing on Leanpub

Free Updates. DRM Free.

If you buy a Leanpub book, you get free updates for as long as the author updates the book! Many authors use Leanpub to publish their books in-progress, while they are writing them. All readers get free updates, regardless of when they bought the book or how much they paid (including free).

Most Leanpub books are available in PDF (for computers) and EPUB (for phones, tablets and Kindle). The formats that a book includes are shown at the top right corner of this page.

Finally, Leanpub books don't have any DRM copy-protection nonsense, so you can easily read them on any supported device.

Learn more about Leanpub's ebook formats and where to read them

Write and Publish on Leanpub

You can use Leanpub to easily write, publish and sell in-progress and completed ebooks and online courses!

Leanpub is a powerful platform for serious authors, combining a simple, elegant writing and publishing workflow with a store focused on selling in-progress ebooks.

Leanpub is a magical typewriter for authors: just write in plain text, and to publish your ebook, just click a button. (Or, if you are producing your ebook your own way, you can even upload your own PDF and/or EPUB files and then publish with one click!) It really is that easy.

Learn more about writing on Leanpub