Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Thread Tools Display Modes
  #1   (View Single Post)  
Old 2nd April 2012
J65nko J65nko is offline
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,503
Default Case Study: Securing Web Applications

From http://www.securityweek.com/case-stu...b-applications

With estimated worldwide cyber crime losses in 2011 over $388 billion, corporations, both large and small, are focusing considerable attention towards the security of their physical infrastructures as well as their outward facing web applications. While most physical infrastructures have been secured, there are still many critical security vulnerabilities in the majority of web applications.

In this “Case Study” column I will share some takeaways based on my involvement in two recent remediation engagements as a basis for understanding the reasons behind the continued trend in vulnerable web applications. I will also touch briefly on the testing of web applications for security vulnerabilities and remediation and development techniques employed to ensure security.
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #2   (View Single Post)  
Old 2nd April 2012
Ninguem Ninguem is offline
Join Date: Jun 2011
Posts: 137

There are probably a few common problems here:
1. My understanding is that the web server should be run as nobody on a UNIX-like/clone system. Is such an option available for Windows?
2. Some run the applications in a chrooted environment. Is this method known by others and is it available for Windows?
3. What is the percentage that take time to set permissions on directories from write to access?
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
awk material to study. iostreamer Programming 5 28th March 2012 02:02 PM
Hard disk won't work after changing case sepuku OpenBSD General 68 8th September 2011 03:09 PM
C project to study maxrussell Programming 10 23rd January 2009 08:47 AM
The case of the missing 24GB Bruco FreeBSD General 3 20th October 2008 06:44 PM
C Programming Study Group on SDF cajunman4life Programming 0 23rd August 2008 02:27 AM

All times are GMT. The time now is 02:14 AM.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick