-
Notifications
You must be signed in to change notification settings - Fork 11
Plans for PHPSecInfo mk2
funkatron edited this page Sep 13, 2010
·
3 revisions
- PHP4 is inherently insecure. Do a simple detect on bootstrap for 4 and throw an error
- Base version should be PHP5.2. Anything lower lacks stuff like built-in filter extension. I wouldn’t trust it.
- Needs to pass E_STRICT
- It should be easy to add new user-defined tests to PHPSecInfo.
- We should support easy localization.
- Overriding look and feel of output should be simple
- Templating
- Overriding output FORMAT should be simple
- data formats like JSON and XML
- It should be possible to use PHPSecInfo as a library for a larger application, where the app calls a PHPSecInfo method and retrieves the test results as a data structure
- This is important for accessibility/ease of installation
- probably built with some kind of packaging script, and/or a Phar file
- Make it easy to update
- Pearfarm.org or Pearhub
- phpsec.org is kind of in limbo
- move explanatory articles to some sort of KB system (tenderapp.com? locally hosted?)
- Needs to be easier to update support info
- Needs a better support system (tenderapp.com would be good interactive support too)