Yii Framework Forum: Yii Security - Yii Framework Forum

Jump to content

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

Yii Security

#1 User is offline   beshoy 

  • Newbie
  • Yii
  • Group: Members
  • Posts: 3
  • Joined: 18-May 15

Posted 18 May 2015 - 05:51 AM

Hello every one this is my first topic Here :)

i want to ask about yii security features is there a real security ways have to be done after finishing the website
like checking on :

XSS
CSRF
SQL Injection/Blind SQL Injection
File Upload
Information Disclosure
Local File Inclusion
Remote File Inclusion
Path Traversal
OS Commanding
Null Byte
Brute Force

i need your experience in this ways and how yii can avoid it .
0

#2 User is offline   rups g 

  • Standard Member
  • PipPip
  • Yii
  • Group: Validating
  • Posts: 146
  • Joined: 16-December 14
  • Location:India

Posted 22 May 2015 - 04:24 AM

View Postbeshoy, on 18 May 2015 - 05:51 AM, said:

Hello every one this is my first topic Here :)

i want to ask about yii security features is there a real security ways have to be done after finishing the website
like checking on :

XSS
CSRF
SQL Injection/Blind SQL Injection
File Upload
Information Disclosure
Local File Inclusion
Remote File Inclusion
Path Traversal
OS Commanding
Null Byte
Brute Force

i need your experience in this ways and how yii can avoid it .

as per my exp i worked in 4 yii2 projects
i have cross checked that there are no issue in security it is very safe in all manner.
Im very sure in below features.

XSS
CSRF
SQL Injection/Blind SQL Injection
File Upload
0

#3 User is offline   Muaid 

  • Standard Member
  • PipPip
  • Yii
  • Group: Members
  • Posts: 138
  • Joined: 25-October 10
  • Location:Saudi Arabia

Posted 29 June 2015 - 02:48 AM

yes sure,

you have to consider some important things in order to fulfill yii security and not to bypass yii's MVC architecture (like accepting direct post data using php not using yii), anyway this link may give you and idea about best practices:

http://www.yiiframew...-practices.html

اتمني اذا كنت تعرف العربية ان تستخدمها ليستفيد المتلقي العربي، شكرا
0

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users