Keep your code safe - Tips from the security team
Submitted by heine on July 7, 2009 - 21:48
Your session in a few words:
How to write secure code. Emphasis on secure string handling.
Date:
September 4, 2009 - 13:40 - 14:30
Room:
Gulbenkian
Track:
Code it, test it, deploy it
Session Type:
Lecture
Level of expertise:
Intermediate
Language:
English This session is aimed at the typical Drupal developer.
The session starts with a short overview of the most common security issues, their consequences and how you can use the Drupal API to prevent them. The second half of the talk is devoted to string handling as the most prevalent vulnerability, Cross site scripting (XSS), happens when you get it wrong. You should leave the session with a clear understanding of when to use filter_xss, check_plain, check_url & check_markup.