About the Author

Chris Shiflett

Chris Shiflett is an author and speaker who leads the web application security practice at OmniTI.

PHP & Web Application Security Blog

Apr 2009

A rev="canonical" HTTP Header

Related: Save the Internet with rev="canonical" Update: Recommending Link (an existing header) instead of X-Rev-Canonical. See below for syntax. Since my post yesterday, I have noticed a lot of chatter a...

Save the Internet with rev="canonical"

Related: A rev="canonical" HTTP Header Slashdot: Note that rev="canonical" (reverse link) and rel="canonical" (forward link) indicate the same relationship in opposite directions. Also, be careful not to ma...

CSS Naked Day

You might be wondering what happened to my design. As with years past (2007, 2008), I'm participating in CSS Naked Day to show my support for web standards, and to show off the design of shiflett.org: The i...

Mar 2009

Smashing PHP

We're trying to do something special at OmniTI. We've got great web talent, from operations to design (and plenty of everything in between). For my part, I bridge the gaps as much as I can, so I try to keep ...

Feb 2009

Migrating from FeedBurner to Google

When I logged into FeedBurner today, I was presented with the following message: Your FeedBurner account "shiflett" and all of your feeds should move to Google. I've actually been seeing this message f...

Twitter Don't Click Exploit

I've been posting to Twitter more than my own blog lately, but I noticed a Twitter exploit today that I thought was worth sharing in more than 140 characters. You can try the exploit for yourself at the foll...

New Comments

Ronald wrote:

A little hard for a rookie like me, but useful. I also thought you'd like to know there is a grea...

Posted in A rev="canonical" HTTP Header
Alex wrote:

Aren't you forgetting that the session will expire if _write() is never called? That excludes ...

Posted in
Andy Mabbett wrote:

@Chris Shiflett, #4, belatedly: Google only accepts rel=canonical within the same domain. My s...

Posted in A rev="canonical" HTTP Header
Kenneth Udut wrote:

I've implemented this rev="canonical" idea on http://free.naplesplus.us in the hopes that it catc...

Posted in Save the Internet with rev="canonical"
Mark wrote:

After reading your article and all the comments, what I got out of this was that sessions are not...

Posted in
andyface wrote:

I do like the idea of CSS Naked Day, and in theory you should still be able to navigate the site ...

Posted in CSS Naked Day

Browse Comments