Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:87152
Return-Path: <matt.tait@gmail.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 53638 invoked from network); 13 Jul 2015 18:23:24 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 13 Jul 2015 18:23:24 -0000
Authentication-Results: pb1.pair.com header.from=matt.tait@gmail.com; sender-id=pass
Authentication-Results: pb1.pair.com smtp.mail=matt.tait@gmail.com; spf=pass; sender-id=pass
Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.160.171 as permitted sender)
X-PHP-List-Original-Sender: matt.tait@gmail.com
X-Host-Fingerprint: 209.85.160.171 mail-yk0-f171.google.com  
Received: from [209.85.160.171] ([209.85.160.171:34647] helo=mail-yk0-f171.google.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 61/BC-43998-B1204A55 for <internals@lists.php.net>; Mon, 13 Jul 2015 14:23:24 -0400
Received: by ykax123 with SMTP id x123so74864118yka.1
        for <internals@lists.php.net>; Mon, 13 Jul 2015 11:23:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:date:message-id:subject:from:to:content-type;
        bh=TydQexgtmzSwTiZvJF9OzLE/72wnIA6nPrkFOozG0ZQ=;
        b=AP2tgiUpr7g7GG2C722s7osZhzPEPlgUF11gg8Htp+OeMmsaA9x0NKymwsLS39bozU
         FK+Z1XHl+BlulGEzpsZjvTMbUWLSzbIHNIJS75kPaNDLzJbFrtgQs9oI1W/v0vxMf903
         zpBQ72x1uJq7+gM5e9auBAFcUldMG32mOplzWecvGjb760F5SNs9ECSrR3CXVxIoyPzp
         67xTrjZ10harHUDiJE2Zd9ZzyVt729RIelJ/zIpBmcfBoP6xo/eweYxkDjpYpCSe5GKH
         i/eIkIYYdHpwf3KCGqAqQdbVERgIj3V+2WUH5gW9Bx5cbRa4ya1w5wecMuePDKU2kuJj
         vbeQ==
MIME-Version: 1.0
X-Received: by 10.129.72.18 with SMTP id v18mr40514201ywa.34.1436811800275;
 Mon, 13 Jul 2015 11:23:20 -0700 (PDT)
Received: by 10.37.110.131 with HTTP; Mon, 13 Jul 2015 11:23:20 -0700 (PDT)
Date: Mon, 13 Jul 2015 19:23:20 +0100
Message-ID: <CAEZfaM7CJZhNzZBSWwSuEwXLzyELHe+JQrU0aQgMn1cqsCLVVQ@mail.gmail.com>
To: internals@lists.php.net
Content-Type: multipart/alternative; boundary=001a114dcba0f6f254051ac5d04d
Subject: Introductions
From: matt.tait@gmail.com (Matt Tait)

--001a114dcba0f6f254051ac5d04d
Content-Type: text/plain; charset=UTF-8

Hi all,

I'm Matt Tait; a security researcher at Google, and I'm quite interested in
looking at and helping to build new security-related features within PHP;
i.e. features that reduce the likelihood that deployments of PHP end up
being hacked.

In the short term, I'm quite interested in looking at ensuring that all of
the compiler and operating-system security features are enabled by default,
and later I hope to be looking at both hardening the PHP core against
various categories of memory-corruption vulnerability. Hopefully this work
will also end up improving the performance and security of various parts of
PHP core.

In the longer-term I'm also interested in building user-visible features
for PHP that would allow developers who want or need to deploy PHP to
sensitive environments to prevent certain categories of error across their
entire codebase (such as SQL injection and so on) that are commonly used by
hackers. This would be particularly useful for many less-technical
companies who are worried about hackers, but unable to ensure that every
component they plug in to their website is coded with security-in-mind.

I look forward to working with you all to make PHP a better product for PHP
developers and website owners!

Cheers,
Matt

--001a114dcba0f6f254051ac5d04d--