ChipmunkNinja
Ninjas are deadly. Chipmunk Ninjas are just weird.
About this blog
Marc Travels
Marc on Twitter
JustLooking on Twitter
Marc Wandschneider is a professional software developer with well over fifteen years of industry experience (yes, he really is that old). He travels the globe working on interesting projects and gives talks at conferences and trade shows whenever possible.

My Publications:

My book, "Core Web Application Programming with PHP and MySQL" is now available everywhere, including Amazon.com

My "PHP and MySQL LiveLessons" DVD Series has just been published by Prentice-Hall, and can be purchased on Amazon, through Informit, or Safari

ABCHKMPRaRoSTVW
xxxxx-xxxxxxxxx
Mar 13, 2008 | 08:00:48
PHP Québec i18n Presentation Slides
By marcwan

Here are the slides for the talk I gave at the PHP Québec 2008 Conference titled “PHP for Polyglots: Web Applications and i18n”

Feel free to email me if you have any questions or comments on these slides!

Comments (2) Add Comment | Tags: php quebec 2008 conference slides talks
Using ereg is a security hole
Posted By: Gergely Hodicska Mar 15, 2008 05:51:22
Hi!


Interesting slide, but in this I disagree with you:
"Perl regular expressions (pcre) not UTF-8 safe.
If you are processing user input, must use ereg regular expressions"

1. What is the problem with the /u modifier at PCRE?
2. Using ereg for input validating is not a good idea while it is not binary safe. You can test it with inserting a \0 character into a request variable: ereg will think that this is the end of the string (this is caused by the internal representation of strings in PHP), and doesn't validate the rest of it.


Best Regards,
Felhő
thanks
Posted By: --- Mar 16, 2008 23:16:08
I was just looking for them ... I missed your talk .
Add a Comment

Title:

Name:

URL:

Comment:

Copyright © 2005-2008 Marc Wandschneider All Rights Reserved.