developers.slashdot.org — This talks about how PHP's poor security has given software managers a negative impression of other, unrelated open source software like Linux, MySQL and Apache. .The article further suggests that the open source community must abandon PHP immediately in order to save its reputation. Major projects should stop using it for their web sites.
Feb 20, 2007 View in Crawl 4
jenkins86Feb 20, 2007Submitter
I'd say that VB is better than PHP. At least it offers some degree of structure.
Closed AccountFeb 20, 2007
The biggest problem with PHP is it's got a massive 'market' of teenagers slapping together ugly-assed spaghetti crap and then calling it "an open source project" and sharing it. Then they go on to writing tutorials to share their "knowledge" with other learners and you end up with awful examples teaching more people terrible practices in PHP.eg: <a class="user" href="http://code2design.com/the_sqlite_database_handler_class">http://code2design.com/the_sqlite_database_handler_class</a>Methods outside the class, only for use within the class ... hardcoding any page that uses this code to not cache ... and the only commenting is a little self-congratulations at the top.<a class="user" href="http://ehlo-localhost.com/2007/02/06/postcard-tutorial/">http://ehlo-localhost.com/2007/02/06/postcard-tutorial/</a>A great way to encourage and enable spammers to do their stuff and get some poor hosting company's ip addresses blacklisted.<a class="user" href="http://whoyouknow.co.uk/php/shop/">http://whoyouknow.co.uk/php/shop/</a>Have some SQL injection free with this half-arsed shopping cart tutorial.
jasonsalasFeb 22, 2007
I've got no problem with PHP as a language, it's just messy. And the API is mammoth (this is debatable, because while I don't personally appreciate this aspect of the platform, I know people who love having most conceivable functionality ready to go by default, even if it means bloating the core library). IMHO, it just makes for everything we tried to get away from in 2000-2001. I did ASP 3.0 for several years and hated creating a form and then a script to process it and incessantly mixing code and markup.JSP, ColdFusion and ASP.NET are meant to be more structured, and de facto organization or apps created with those platforms has a lot to do with that. I love Ruby on Rails, but the one criticism I've got against it is the return to spaghetti code and mixing scriptlets and programming logic with HTML layout.
jameshamiltonFeb 24, 2007
Thanks for your comment about my half-arsed tutorial. Greatly appreciated, all feedback welcome. Missed the SQL Injection flaw, I'm obviously not perfect like you.Thanks.