Security has become more of a hot topic in the PHP community recently and PHPMaster.com has pulled together a list of resources you can read up on to get some great ideas for securing your application.The unfortunate truth of the matter is there's no excuse for [the LinkedIn, Yahoo!, eHarmony and Last.fm] leaks; they would not have been possible if simple, well-known security precautions were taken. Are you protecting yourself and your applications by guarding against SQL-injection attacks? Are you...
Today I'm giving my first ever talk at OSCON - about PHP 5.4 (I'll also be giving my second ever talk at OSCON, about RESTful services; it's a busy day!). My talk includes some benchmarks which I thought I'd also share here, mostly because I like pretty graphs - and this one is pretty:
This graph shows the performance of four versions of PHP (because the bench.php script that lives in the php source tree didn't appear until 5.1). The axis up the left is the time it took to run the benchmark script - so...
I was asked an interesting question via email yesterday.AThe question is fairly simple. The answer, not so much... So, rather than reply in an email, I figured that I'd write a post about it instead. The question, simply stated, is:When comparing a float to an integer using ==, where does the conversion happen?So, let's begin...Read more A
On PHPEasy.co.uk today there's a new tutorial posted showing you how to sort using the SplMaxHeap functionality provided by the Standard PHP Library.The SplMaxHeap class basically stores numbers in any order, and then returns them in descending order. In order to make this class useful for other data types other than numbers I have extend the SplMaxHeap class to compare dates and strings. SplMaxHeap extends SplHeap and implements the abstract class SplHeap::compare. Our extention of SplMaxHeap is...
Tulip Image Processor
Array Handling for MySQL
Customers 2 Avoid API
That moment when you realize just how much awesome you have coming up that you're not sure you're going to survive it? Yeah, that.
It's nearly time for the second half of the year conference season, and it looks like my schedule is starting to fill up. I've three conferences and 5 speaking engagements in the coming weeks, so for those interested in Stalking Crell here's where you'll be able to find me:
Midwest Developers Summit: 26-28 July
The Voices of the ElePHPant podcast has released their latest episode - an interview with Lineke Kerckhoffs-Willems, a member of the PHPWomen organization and a recent project, ProTalk.Cal's three questions for Lineke touch on her community involvement and
Tell us what PHPWomen has going on and what's coming up in the future of the organization.
Tell us a little about the conference the PHPWomen group is organizing (in the US)
You've started a new project called ProTalk.me, tell us some about it
Anthony Ferrara has posted a pledge he recommends all developers take to improve the security of their applications.Every day I come across code that is insecure. Sometimes the code is so hilariously insecure that any 10 year old could break it. I've also gotten into discussions with people who should know better about their practices. It's very, how to put this, disheartening. It's sad that the average developer knows (and cares) so little about proper security practices. So, I've put together a simple...
The Aura Framework project has made a new post to their blog walking you through the steps you'll need to contribute back to the project with your ideas and bugfixes for their various components.Sometimes you may have noticed a bug, or need a feature implemented, and need to contribute back to the aura community. These are some of the steps to help / contribute to aura project.They walk you through: setting up git (well, point you to github's guide), fork the main repository and check out a copy,...
On NetTuts.com there's a new tutorial that wants to help you get started with a different sort of testing methodology than you might not have tried before - test driven development:Let's admit it: the PHP community has lagged a bit, when it comes to advocating test-driven development. We know we should, but, even to this day, a sizable portion of the community does not. In this new series of videos and tutorials, created by the Nettuts+ team, we're hoping to change that. Trust me: it's not as tough as...
ServerGrove has made an announcement on their blog today about an initiative they're starting to help in their own way to improve the PHP training ecosystem across the community - their "PHP Education Initiative".PHP Training is an integral part of our PHP community and there are a lot of folks providing great training services making the PHP community safer and stronger. ServerGrove has long supported PHP education by sponsoring PHP User Groups and PHP Conferences, but we realised we have overlooked...
PHPMaster.com has an interesting new article posted today showing how you can use PHP to create a two-way messaging (SMS) application that can both send and initiate actions based on message content.SMS is used for various purposes these days. For example, major websites like Gmail and Facebook use SMS to improve their authentication process with multi-factor authentication and notifying users about the updates. These are one-way SMS applications since messages are sent only from these sites to the user....
Latest PECL Releases:
Aaron Winborn is a longtime Drupal contributor and friend to the community. Since his diagnosis with Amyotrophic lateral sclerosis (ALS), Aaron has been trying to enjoy time with his family, to remain productive in his work and to live as normal a life as possible.
As time passes, however, the disease has made his life increasingly difficult as it attacks his nervous system. To cope with the mounting costs of treating his condition, Aaron has set up a special needs trust, and you can make a direct...
On the Script-Tutorials.com site there's a new tutorial showing how to use the Vimeo API to upload your content to their service:Today I would like to continue talking about video. Last time we talked about Youtube, but today I decided to select Vimeo. [...] Our second example - Vimeo. In our new tutorial I will tell you how you can create Vimeo cross-uploader for your website. To achieve our idea we will use Vimeo Upload API. In the beginning, we should register at Vimeo here.The full code for the...
On PHPMaster.com today there's a new tutorial posted that wants to provide a guide to walk you through a trio of ideas to help with code/idea reuse in your applications - inheritance, composition and delegation.The popular belief is that reusing implementation, thus producing DRYer code, boils down to exploiting the benefits that Inheritance provides, right? Well, I wish it was that easy! [...] If you don't know what path to travel when it comes to reusing implementation, in this article I'll be doing a...
PHPEasy.co.uk has a new tutorial posted introducing one of the most common (and often misused) design patterns out there - the Singleton pattern.In this first tutorial in the design pattern series we are going to investigate and implement the singleton design pattern. [...] A design pattern is a common solution to a given problem, problems in programming tend to recur and we often find ourselves trying to solve the same issues over and over. The common techniques that provide solutions to these problems...
Every day I come across code that is insecure. Sometimes the code is so hilariously insecure that any 10 year old could break it. I've also gotten into discussions with people who should know better about their practices. It's very, how to put this, disheartening. It's sad that the average developer knows (and cares) so little about proper security practices. So, I've put together a simple pledge (or manifesto, if you'd like).Read more A
In this new post to his blog Chris Hartjes looks at why "monkey patching is for closers" - how it should be avoided in favor of making the code itself more testable rather than "hack" with the patching.The use of monkey-patching is extremely prevalent in the Ruby community and also to a certain extent in Python usage. I'm not going to go into length about their use of it except to say that it seems quite common and I think most developers are using it as a shortcut to counter what might be poor code...
Latest PHP Tweets