An impending global strike?
The recent phpBB bug highlighted first a small fuckup between phpBB and php.net, each claiming that the fault lies with the other party. However, it was clear later that there was a slight problem with the php code itself, as well as phpBB's need to urldecode a highlight URL, causing the worldwide phpBB/Google attack, aka Santy worm. Santy worm implications on phpBB-based websites esp those with confidential info like credit card numbers were huge.
The php bug itself was quite serious, allowing ALL php-based forum software (eg Invision, vBulletin, phpBB, etc) and ANY php-based software using cookies to be penetrated via cookie manipulation. While the damage is small (a memory dump occurs), I feel it's a prelude to something bigger.
As it stands, there are ALOT of php websites and I mean ALOT. In fact I dare say that the top 5 online languages for web and forum code is as follows, in order:
1) PHP
2) Perl
3) ASP
4) JSP
5) ColdFusion
I believe a major vulnerability in php will occur soon. When it does, the impact on the web will be immense.
The php bug itself was quite serious, allowing ALL php-based forum software (eg Invision, vBulletin, phpBB, etc) and ANY php-based software using cookies to be penetrated via cookie manipulation. While the damage is small (a memory dump occurs), I feel it's a prelude to something bigger.
As it stands, there are ALOT of php websites and I mean ALOT. In fact I dare say that the top 5 online languages for web and forum code is as follows, in order:
1) PHP
2) Perl
3) ASP
4) JSP
5) ColdFusion
I believe a major vulnerability in php will occur soon. When it does, the impact on the web will be immense.
posted by Beng Hacks at 6:25 PM
0 Comments:
Post a Comment
<< Home