March 7-9, 2018
Montreal, Canada

Tales from the wrong end

I'm the maintainer of a very popular open-source PHP package - PHPMailer. In December 2016, two critical vulnerabilities were found in PHPMailer, affecting potentially millions of sites. I'd been involved in reporting minor security issues in the past, but nothing of this magnitude, and never at the receiving end. I found myself at the start of a steep learning curve and an emotional roller-coaster; a story of open source, CVEs, and people.

View all 154 sessions

Marcus Bointon

Synchromedia Ltd

I'm responsible for, support 1CRM in the UK, and pentest and write for Radically Open Security in the Netherlands. I'm the maintainer of PHPMailer (a top-10 PHP project on GitHub), participate in many other OSS projects, and spend too much time answering questions on Stack Overflow. I'm a Linux sysadmin, MySQL DBA, and security consultant. I've spoken at technical conferences in Europe and the US. I live in the French alps with my wife, kids, guitars, skis, and bikes.

Read More


Please remain courteous and constructive. Comments will be moderated.

Montreal 2018 sponsored by