public marks

PUBLIC MARKS from srcmax with tags facebook & web

04 September 2007 09:45

Learning from Facebook: Preventing PHP Leakage | New Web Order - Nik Cubrilovic

by 1 other
I just posted on TC about the Facebook code leak. PHP has always been notorious for sometimes not processing requests poorly and sending back the source code for pages to the client. Because of the way mod_php works with apache, if mod_php fails in intercepting and processing the request, then apache will just serve it back to the client as an ordinary text file. I could go into the details of how this all works and why it sometimes breaks, as well as the causes, but instead lets touch on a few solutions to preventing PHP code from leaking: