Building Fast and Secure Web Applications
Building a web application is easy. Making it fast and secure is hard. We will explore the dangers of cross-site scripting and do a bit of realtime spellunking to demonstrate just how rampant this problem is. If you feel brave, volunteer your own sites for Rasmus to prod during the session. After learning how to avoid these problems we will also have a look at some easy ways to speed up your applications.
Rasmus Lerdorf is known for having gotten the PHP project off the ground in 1995, the mod_info Apache module and he can be blamed for the ANSI92 SQL-defying LIMIT clause in mSQL 1.x which has now, at least conceptually, crept into both MySQL and PostgreSQL. Prior to joining Yahoo! as an infrastructure engineer in 2002, he was at a string of companies including Linuxcare, IBM, and Bell Canada working on Internet technologies.