PHP Security
Welcome to the Hardened-PHP Project Homepage
Founded in 2004 by three Security Researchers from Germany, the Hardened-PHP Project has the goal to help you with securing your applications and webpages. We check well known applications for security holes and inform the vendors about them. This results in a more secure internet... more...
Suhosin
Suhosin is an advanced protection system for PHP installations. It was designed to protect your servers on the one hand against a number of well known problems in PHP applications and on the other hand against potential unknown vulnerabilities within these applications or the PHP core itself. more...
Services
If you're a software vendor or plan to deploy a PHP-powered web site, you will have to make sure that proper security measures have been taken to protect data integrity.
We can help you by auditing your code and examining the underlying server structure for security problems. more...
News
Month of PHP Bugs started
01. March 2007 - the long awaited initiative to improve PHP's security has startedmore...
Suhosin 0.9.6 released
02. October 2006 - first stable release of the Advanced PHP protection systemmore...
Hardening-Patch v0.4.14 released
11. August 2006 - important fixes for patch against 5.1.xmore...
Critical PHP Vulnerability Explained
6. August 2006 - more about the unset() vulnerabilitymore...