WebApp Sec mailing list archives

RE: Web site security

From: "Harbar, Spencer J." <spencer.harbar () dns co uk>
Date: Wed, 12 May 2004 13:43:00 +0100


Check out
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/html/threatcounter.asp

This (downloadable) book has all the info you need.

Hth
.s 

-----Original Message-----
From: Bénoni MARTIN [mailto:Benoni.MARTIN () libertis ga] 
Sent: 11 May 2004 15:12
To: webappsec () securityfocus com
Subject: Web site security

Hi list!

Currently setting up a website in ASP, I am looking for some docs about secure programming. The questions I have are 
like:
- What do I have to check / avoid in my web pages to avoid vulnerabilities,
- How to store password hashes in my Data Base, and not clear-text passwords,
- What tools can be good to help me securing a web site (I was thinking about Nessus, Whisker, AppScan, WebInspect, 
maybe there are more than that and better)
- ...

The technologies I am using are IIS 6, SQL Server 2000 and Win2K3.

Thanks in advance for any clue, advice, ...!






---------------------------------------------------
This email from dns has been validated by dnsMSS Managed Email Security and is free from all known viruses.

For further information contact email-integrity () dns co uk

Current thread:

Web site security Bénoni MARTIN (May 11)
- <Possible follow-ups>
- RE: Web site security Harbar, Spencer J. (May 12)