permaculture playing cards
The moose likes Security and the fly likes PHP security Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Make it so: Java DB Connections & Transactions this week in the JDBC forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "PHP security" Watch "PHP security" New topic

PHP security

Robert Hayes
Ranch Hand

Joined: Oct 24, 2004
Posts: 116
Quick summary:

Our company has outsourced its internet site development to a LAMP shop. For now it's simply for displaying company product content. However, I can already tell that our business may want to hook into the back-office applications (in the future) for e-commerce and customer-related purposes.

Considering that our key back-office apps are Java based, should I worry about having a PHP based app facing the net? How to call our business logic?

Any help appreciated.
Ulf Dittmer

Joined: Mar 22, 2005
Posts: 42959
Umm, isn't it a bit late to be raising these questions, now that the decision has been made?

I could see a number of difficulties arising from the fact of using two different technologies, but why are you worried about security in particular?

I don't know if PHP has special facilities for accessing Java code, but otherwise web services as a very general solution comes to my mind.
Timothy Sam
Ranch Hand

Joined: Sep 18, 2005
Posts: 751
I don't know if PHP has special facilities for accessing Java code

I think PHP does. But I also think it's problematic(based on what I have heared/read).

SCJP 1.5
I agree. Here's the link:
subject: PHP security
It's not a secret anymore!