Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
ak_wi2018-06-10 13:34:31
symfony
ak_wi, 2018-06-10 13:34:31

What security standards are required for the site?

What security standards are required for a site on Symfony and in general in 2018?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
N
nicandr, 2018-06-10
@nicandr

According to the OWASP site, SQL Injection is still number one.
doc: https://www.owasp.org/index.php/Top_10-2017_Top_10
Specifically for symphony, if you use your custom forms that are not from symphony, you need to add a CSRF token. You also need to be vigilant with SQL queries with concatenation (it's better not to use concatenation at all, and use prepared statements) if you use it with native sql. Symphony also has a command php bin/console security:checkthat checks for known vulnerabilities in dependencies.

Similar questions
I
Ivan Antonov2016-02-16 12:36:09
How to specify id manually before recording? 1Reply
E
e-hot2016-02-17 16:54:11
How to implement a single registration and authorization form in Symfony 2? 2Reply
H
HellWalk2021-10-04 10:57:41
How is EntityManager->clear() different from Doctrine->resetManager()? 1Reply
M
magary42016-02-22 15:05:00
How to use the ready interface? 1Reply
A
anboo2016-02-25 20:18:22
Unable to find template FOSUserBundle? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question