"Stefan Esser is the founder of both the Hardened-PHP
Project and the PHP Security Response Team (which he recently left).
Federico Biancuzzi discussed with him how the PHP Security Response
Team works, why he resigned from it, what features he plans to add to
his own hardening patch, the interaction between Apache and PHP, the
upcoming "Month of PHP bugs" initiative, and common mistakes in the
design of well-known applications such as WordPress."
Article Link: http://www.securityfocus.com/columnists/432
