WebApp Sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Secure Coding for Newbies?

From: Dan Cuthbert <dan () idsec com>
Date: 28 Oct 2002 17:27:26 +0000
Hiya

this is by no means a full or finished guide, but it does go over the
basics

http://www.ugc-labs.co.uk/papers/SecureScripting.pdf

hope it helps

dan

On Mon, 2002-10-28 at 11:03, Joe User wrote:

Hi, 

I'm a beginner in PHP and Perl coding and would like a little help!  I've written a few small scripts for personal 
use, but I want to start writing scripts that will be used by / open to the public, and want to write them with 
security in the forefront. 

I'm having a hard time finding specific, concrete examples of common webapp security problems and examples of how to 
avoid them.  Many sites say "validate user input" or "avoid path traversal" or "beware of include files" but don't 
give good examples of *how* I'm supposed to do these things! 

I guess I'm looking for something along the lines of "Webapp Security for Dummies" as a building block.  Can anybody 
point to useful resources for this?  The OWASP guide seems to be more of a guide for competent coders who already 
know how to avoid the problems listed.  :)  

Thanks!

_____________________________________________________________
Fight the power!  BlazeMail.com

_____________________________________________________________
Select your own custom email address for FREE! Get you () yourchoice com w/No Ads, 6MB, POP & more! 
http://www.everyone.net/selectmail?campaign=tag
Previous By Date Next
Previous By Thread Next

Current thread: