[PLUG] Step away from the PHP
ronabop at gmail.com
Wed Jan 27 09:04:25 PST 2010
On Mon, Jan 25, 2010 at 10:34 AM, Rich Shepard <rshepard at appl-ecosys.com> wrote:
> On Mon, 25 Jan 2010, Tim wrote:
>> A warning for those PHP developers and app maintainers who aren't on
>> the security mailing lists:
> Does PHP stand for Pretty Heavy Problems?
Programming Has Problems....
Any sufficiently dumbed down, easy to implement, solution creates an
inversely equal level of problems in actual use. In this case, the PHP
"session" development was initially implemented (IIRC) as a way for
coding newbies to slap together very simple way of maintaining state
on an inherently stateless medium (http), with expected levels of poor
performance, scalability, and security.
Unfortunately, the way PHP matured (if that's the right word to use)
was that a great many folks saw the simple shortcuts and used them,
rather than writing better solutions.
More information about the PLUG