Comments on: 5 Basic PHP Security Tips

By: Steve

Steve — Fri, 04 Sep 2009 17:07:54 +0000

Looks like the site went down for a while, but it appears to be back now.

By: keogh

keogh — Fri, 04 Sep 2009 00:06:42 +0000

The link for the PHP Security Guide is broken

By: Steve

Steve — Wed, 02 Sep 2009 16:30:09 +0000

That’s true, but there are more ways to trick a browser into silently sending a GET request than there are with POST. That tip is more to protect users on the client side rather than protecting your server from attacks.

By: maholtz

maholtz — Wed, 02 Sep 2009 07:30:27 +0000

“Use POST for Dangerous Actions”

there is no difference between POST or GET. You can send POST Request with Javascript or use some firefox plugins. IMHO the only difference is, that usually GET will be in your webserver Logfiles where POST is not.