PHP Security

http://shiflett.org/talks/oscon2004/php-security

http://shiflett.org/articles/the-truth-about-sessions

http://shiflett.org/articles/foiling-cross-site-attacks

http://phundamentals.nyphp.org/

http://www.sklar.com/page/article/owasp-top-ten

http://wact.sourceforge.net/index.php/PhpApplicationSecurity

http://www.phparch.com/

http://shiflett.org/books/http-developers-handbook

http://shiflett.org/books/php-security

http://www.owasp.org/