Development Notes

From Freelock Knowledge Base

Contents 1 PHP Tips & Tricks 1.1 Preventing email header injection 2 Libraries 3 Character encoding issues

[edit] PHP Tips & Tricks

[edit] Preventing email header injection

http://www.swiftmailer.org/ - get swift mail

http://phpsense.com/php/php-mail.html - nice writeup explaining how header injection works, and basic use of phpmailer and swift mail

<http://sourceforge.net/mailarchive/forum.php?thread_id=31170922&forum_id=1709> - PHPMailer user complaining about header injection

http://randomfoo.net/blog/id/4014 - Zero tolerance--a short script that bans attackers from the web site entirely

http://www.symfony-project.com/forum/index.php/m/16127/ - Extend PHPMailer with some header injection protection

[edit] Libraries

• Dojo
• Prototype

[edit] Character encoding issues

• Everything you need to know
• Strategies
• Dealing with them in PHP