“Programmer migration patterns” is an interesting attempt to identify where programmers start and how move from one programming language to another. This is not precise science, obviously. But I have to say that I mostly agree with the findings.
The first language that I learned (back in school) was BASIC, which then gave me some legs with Visual Basic later in college. Also in college, I’ve learned assembler, C, and Pascal, which guided me to some amateur and professional development with Delphi.
Soon after that I discovered Linux, which meant shell scripting. I played with awk, but I didn’t have to dive deep, as Perl was already available. Perl was probably my first true programming language, which I learned outside of school and college, and which I have been using for years to build all kinds of things. I still love Perl dearly, but the last few years I have been mostly using PHP, with some occasional Python.
“Intro to basic web application security” is an excellent overview of the most common mistakes web developers make when it comes to security. The article provides practical examples (including code snippets and screenshots), which illustrate the problems and ways to solve them. The list includes:
SQL injection (of course! no such guide would be complete without it)
Cross-site scripting (XSS)
Cross-site Request Forgery (CSRF/XSRF)
Local file inclusion (LFI)
Insufficient password hashing
Man in the middle (MITM)
XML external entity (XXE)
Sensitive data exposure (including error messages and exceptions)
Login rate limits
and a variety of other, small, but potentially dangerous issues.
Today I came across this GitHub repository, which makes this resource even better specifically for PHP developers. Yup, that’s right, the GitHub repository features all code examples written in PHP 7.3, making it super easy to jump into coding.
And if you aren’t a PHP developer, have a look at the other repositories, which do the same for a few other programming languages.
“When I started writing PHP…” is a nice look at how PHP ecosystem has changed in the last 20 years. Those of us who have been using it since then, are guaranteed to drop a nostalgic tear.
The running joke “you’re not a real PHP developer until you’ve written your own CMS and discarded it” wasn’t a joke yet. It was just becoming reality, but it wasn’t old enough yet to be a joke. (Yes, I wrote my own CMS and discarded it.)