Points of Attack: PHP and Ajax

"It's easy to get caught up in the dynamic potential of Ajax. But with innumerable possibilities also comes increased risk. If security isn't a major concern, it should be.

"Consider a registration form built out of PHP. Any aspect of your script that accepts and processes data is a potential point of attack. If you add Ajax, what you’re doing is increasing the complexity of the application and, by extension, introducing greater vulnerability. More points of entry equal a larger attack surface, and that means potential problems for your application..."

Complete Story

Related Stories:

• What is Google's Open Source End Game?(Apr 13, 2007)
• OSWeekly: Web OSes: Will They Ever Catch On?(Jan 17, 2007)
• Enterprise Open Source Magazine: Java: Money, Freedom and Open Source(Oct 01, 2006)
• Monday by Noon: Linux and Web Development [Parts 1 & 2](Sep 13, 2006)