Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: ASP web application security

From: "patrick" <patrick () curioustechnology com>
Date: Wed, 19 May 2004 06:12:35 -0700
Make sure you're using SSL in scenarios that make sense.  If your
application is making connections to a database, avoid using sql
authentication and if possible leverage windows authentication.  Make sure
the application doesn't trust user input without validating it first.  

Your question is very broad- MS has a good book on this subject and there
are sections in it that are specific to ASP.  Check out writing secure code:

http://www.microsoft.com/mspress/books/5957.asp



-----Original Message-----
From: hassan hani [mailto:amni___ () hotmail com] 
Sent: Monday, April 12, 2004 3:02 AM
To: security-basics () securityfocus com
Subject: ASP web application security

hello,
do anyone have a document which explain how to secure a web application 
developped with ASP.
thanks

_________________________________________________________________
Trouvez l'âme soeur sur MSN Rencontres ! http://g.msn.fr/FR1000/9551


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the
skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------





---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: