About the Author

Chris Shiflett

Hi, I'm Chris, a web developer and a founding member of Analog. I live and work in Brooklyn, NY.


PHP & Web Application Security Blog

Feb 2010

Webstock

I've been speaking at conferences since 2003, but I've never been as excited about a conference as I am about Webstock. I remember discussing it at the first Kiwi Foo Camp with Natasha Lampard and a few othe...

Jan 2010

2009 Highlights

I'm a bit delinquent, but this is my first post of the year, and sticking with tradition, it's a chance for me to record highlights from the previous year. This is my seventh consecutive year doing this; it'...

Dec 2009

Hello, Analog

A few months ago, I was on top of the world. The place was called Sjónarsker, and the view was breathtaking. It was the third day of a road trip around Iceland with my friends Andrei and Helgi, and I ha...

PHP Advent 2009

With the help of Sean and twenty-four fantastic authors from the PHP community, PHP Advent is back for a third year. Paul gets things started with an article on comprehensible code: Reading code is hard wo...

Nov 2009

Facebook, MySpace, and crossdomain.xml

Thanks to the recent recurrence of a vulnerability I wrote about a few years ago and a gentle prod from Simon, I decided it would be good to write about the dangers of cross-domain Ajax with Flash again. ...

Git on Snow Leopard

I've had a GitHub account for months, but I've yet to use it. After I mentionined on Twitter that I might start using it, the response was very positive. People really love Git and GitHub both. Unsurprisi...

New Comments

Niall Kelly wrote:

Having tried other methods without success and looked through plenty of bloated documentation, th...

Posted in Git on Snow Leopard
liukang wrote:

I have problem with this example. In my php.ini magic_quotes_gpc is off so i'm using only addsla...

Posted in addslashes() Versus mysql_real_escape_string()
RyanTheGreat wrote:

Well, I'm not Chris, but I will do my best to address the questions raised in the comments by Ian...

Posted in Security Corner: Cross-Site Request Forgeries
Chris Shiflett wrote:

Thanks for the kind words, Simon. I'm glad you liked the tutorial. In case it's helpful, here'...

Posted in Webstock
Chris Shiflett wrote:

Hi Robin, I plan to post something about it, but it's going to be hard to express everything i...

Posted in Webstock
Simon Mahony wrote:

Hi Chris, I really enjoyed your workshop on the Evolution of Security at Webstock. I think I g...

Posted in Webstock

Browse Comments