PHP security guide under scutiny
Wow, I ignored my RSS feeds for a few days and returned to find quite a discussion about security flaws in the PHP Security Consortium's Security Guide. I bring this up not to re-hash the juicy interpersonal stuff that surfaced in the conversations around this, but merely to help bring to light the delicate balance of secure code vs. hacked applications. It's a real us-against-them world out there, and security-minded developers need to stick together to win the battle against unethical hackers.
