Security Basics mailing list archives
RE: ASP web application security
From: "patrick" <patrick () curioustechnology com>
Date: Wed, 19 May 2004 06:12:35 -0700
Make sure you're using SSL in scenarios that make sense. If your application is making connections to a database, avoid using sql authentication and if possible leverage windows authentication. Make sure the application doesn't trust user input without validating it first. Your question is very broad- MS has a good book on this subject and there are sections in it that are specific to ASP. Check out writing secure code: http://www.microsoft.com/mspress/books/5957.asp -----Original Message----- From: hassan hani [mailto:amni___ () hotmail com] Sent: Monday, April 12, 2004 3:02 AM To: security-basics () securityfocus com Subject: ASP web application security hello, do anyone have a document which explain how to secure a web application developped with ASP. thanks _________________________________________________________________ Trouvez l'âme soeur sur MSN Rencontres ! http://g.msn.fr/FR1000/9551 --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ---------------------------------------------------------------------------- --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
Current thread:
- RE: ASP web application security patrick (May 19)
- RE: ASP web application security Tom (May 21)