Security Basics mailing list archives
Re: Java Enterprise Safe ??
From: Adriel Desautels <adriel () netragard com>
Date: Tue, 14 Oct 2008 11:41:35 -0400
Java has better security when it doesn't contain vulnerabilities. The code isn't always the problem, sometimes the interpreter is the problem. In most cases though, it is the developer as suggested before. Java can be very safe. Regards, Adriel T. Desautels Chief Technology Officer Netragard, LLC. Office : 617-934-0269 Mobile : 617-633-3821 http://www.linkedin.com/pub/1/118/a45 Join the Netragard, LLC. Linked In Group: http://www.linkedin.com/e/gis/48683/0B98E1705142 ------------------------------------------------ Netragard, LLC - "The Specialist in Anti-Hacking" Netragard Whitepaper Downloads: ------------------------------- Choosing the right provider : http://tinyurl.com/2ahk3j Three Things you must know : http://tinyurl.com/26pjsn Gleb Paharenko wrote:
Hi! IMHO, java projects have better security. Variable binding and no dynamic sql significantly improves sqli strength. 2008/10/7 Mattias Hemmmingsson <mattias () fareoffice com>: God morning We are now working with java enterprise at the glassfish server. And a come of thinking how secure is java really ? If you look att OWASP home page you can find the ten most common security risk against java, So with XSS how mutch damiage can you do to the system ore can you only change the clients view ? Sql injection is it poosible to do with java enterprise ? And the big one JAS ( java auth system or somthing like that) How safe is it realy ? // matte
Current thread:
- Re: DOT NET code review, (continued)
- Re: DOT NET code review J. Oquendo (Oct 03)
- Re: DOT NET code review Lee Fisher (Oct 03)
- File traces Sumeet Narula (Oct 06)
- Re: File traces Shreyas Zare (Oct 06)
- Re: File traces Adam Pal (Oct 06)
- RE: File traces John Grubb (Oct 06)
- RE: File traces Tiago 'gouki' Faria (Oct 06)
- Java Enterprise Safe ?? Mattias Hemmmingsson (Oct 07)
- Re: Java Enterprise Safe ?? Joe (Oct 09)
- Re: Java Enterprise Safe ?? Gleb Paharenko (Oct 09)
- Re: Java Enterprise Safe ?? Adriel Desautels (Oct 14)
- Re: DOT NET code review J. Oquendo (Oct 03)
- Re: File traces Simone (Oct 06)
- Re: File traces Brian Johnson (Oct 06)
- Re: File traces dongle (Oct 07)
- Re: File traces the.soylent (Oct 06)
- Re: File traces Frynge Customer Support (Oct 07)
- Delegating Domain Administration - Win2k3 WALI (Oct 06)
- Re: Delegating Domain Administration - Win2k3 Salvador III Manaois (Oct 07)