Hacker News new | past | comments | ask | show | jobs | submit login

There used to be bad defaults, such as "magic quotes" and "register globals".

Register globals was turned off in later versions of PHP 4. Magic quotes was turned off in PHP 7, released in 2015.

PHP today is no more "unsecure by default" than any other language.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: