Blog

Insights into my everyday programming life and other interesting technical tidbits

Posts about: security Clear filter

February 2026

Published on Feb 27, 2026 · approx. 1 min read

PHP Security Pitfalls: Why $_SERVER['REQUEST_URI'] in Forms is Dangerous

A look at common security pitfalls in PHP: From XSS to SQL injection to insecure password storage.

php security webentwicklung
Read More →
Published on Feb 20, 2026 · approx. 6 min read

My Production Server Setup with openSUSE Leap

From bare-metal server at Hetzner to a hardened production system: nginx with Brotli, PHP-FPM, RabbitMQ, CrowdSec, SSH tarpit and automated backups.

devops linux nginx security
Read More →
Published on Feb 14, 2026 · approx. 4 min read

CSRF in Symfony and Why Shopware Dropped It

CSRF protection is standard in Symfony – but Shopware 6 deliberately chose against it. Why? And how do you properly handle MySQL locking and parallel JavaScript requests?

symfony php security shopware
Read More →