Article submitted
-----------------
The article "Security screen" is submitted for publication.
You are invited to review it and to give your opinion
in the forum linked to it. It is available at the address:
http://www.spip.net/ecrire/?exec=articles&id_article=4201
** Security screen **
by Thomas Sutton, Thomas Sutton
The security screen is a single PHP file, which protects your sites by
blocking certain attacks related to security holes. This system makes it
possible to react very quickly when a problem is discovered, by plugging
the hole without to have to upgrade a site or apply a complex “patch”.
Philosophy
When someone discovers and reports a “security hole” in SPIP, the SPIP
development team tries to correct the problem as quickly as possible.
Updates are made available for both the development and stable versions to
help prevent the propagation of insecure code.
However, many users do not have the time or the ability to make the
updates, and they tend to weigh the risks of running potentially (...)