I just wanted to respond to Christopher’s article warning about a SQL injection article in current PHP Magazin. Unfortunately right after posting the comment I got a „Fatal error: Call to undefined method Net_DNSBL::getTxt() in /home/absynth/path/deleted/for/security/reasons/serendipity_event_spamblock_rbl.php on line 94“. As I’m in a hurry to an event, I post my comment here:
thanks for your critics. As you have written, your last article you’ve written was about 2 years ago. In the meantime we were continually shaping our editorial process and putting more ressources (as possible) into quality checks. However, as you might know, there can be holes that let slip through such a „bad“ quality.
I really admire your posting and would like to invite you as an expert for security improving future articles about that topic.
Best regards, Björn Schotte (Editor in Chief).