Let’s be honest – the guys over at bugtraq, full-disclosure and others make fun of us PHP people. Not only do we provide the dramatis personae – be it phpBB, the Nuke family or XMLRPC, we also deliver remote code execution, XSS or SQL injections right to the security peoples‘ doorstep.Why does this happen? Are…

PSync/Outlook is a outlook synchronisation tool for phprojekt. It synchronizes contact, calendar, todo and note data in both directions. It uses PEAR::Soap for PHP 4 and the builtin SOAP for PHP5 and is written in Delphi.

In one of my softwares i have to prove that the xml output given is authentic. So i simply take secret known by my counterpart and me, add it to the xml string and use a md5 to sign the xml stuff. No more.

Actually "SOAP" is just "A". There is no object orientation, no protocol and least but not last no "simple" in it.

About one week ago i did the about 3526th most important thing in my live: my development platform is no longer php4, it’s php5 now. since i (and my customers, more important) are depending on a stable development environment, that’s not as simple as it may seem. And – surprise, surprise – everything went fine,…