Day Camp 4 Developers Master Series II
18 Oct 2013
at Online
Talk comments
Great talk with basic level of knowledge for securing a web application. If you've been around PHP a while you may think this outdated or obvious, but I can tell you I know people that still argue against validating on the server side if they're already doing it on the client side...for API requests...
Good talk, but spoke very quickly at times. Perhaps a bit less content would allow for a slower paced presentation.
I enjoyed the prison theory spin on PHP security as well as the personal antidotes to make the talk interesting. Would of enjoyed more in-depth examples and best practices over the usual cry of "security is important".
I like the concept of thinking of your application as a prison with guards, watch towers, gates and the whole lot. The personal story telling made it even more appealing.
Thanks for sharing and making us more paranoid!
Great presenter, minimal slides. Kept my focus throughout.
Never heard someone suggest using obfuscation to improve security with a straight face.
Good talk!
Just 2 small things:
1) the code snippets seemed too easy
2) would like to see some images also in the slides
Good job overall! Cheers!
I agree with the comments on going more in depth. I typically like talks that aren't very high-level or abstract. (At least not for very long)
Well done!
I also would have liked some more concrete examples. Perhaps take a form and show how to add the layers to it.