This week's book giveaway is in the JavaScript forum.
We're giving away four copies of Cross-Platform Desktop Applications: Using Node, Electron, and NW.js and have Paul Jensen on-line!
See this thread for details.
Win a copy of Cross-Platform Desktop Applications: Using Node, Electron, and NW.js this week in the JavaScript forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

Securing web application before releasing  RSS feed

 
Hussein Baghdadi
clojure forum advocate
Bartender
Posts: 3479
Clojure Mac Objective C
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hey,
I hope this is the right forum to ask in.
Suppose I have done developing my web application but before deploying it in the wide world I want to perform a couple of checks the make sure my application isn't vulnerable.
What are the checks I have to perform?
What kind of threats are expected?
Any book discuss this?
Thanks for help and time.
 
Virendrasinh Gohil
Ranch Hand
Posts: 46
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I think, it is worth checking this: http://download.oracle.com/javaee/5/tutorial/doc/bncas.html
 
Lester Burnham
Rancher
Posts: 1337
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The SecurityFaq discusses various web app attacks and how they can be mitigated. If this web app has been developed without regard to security so far, then it's likely that it does indeed have vulnerabilities. Security is something that must be considered from the start; bolting it on as an afterthought generally results in insecure systems.
 
David Newton
Author
Rancher
Posts: 12617
IntelliJ IDE Ruby
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Just surfing the web for web application vulnerabilities is more than enough to get you started. The obvious issues are SQL injection, XSS, security through obscurity, direct access to JSPs (only potentially a problem), and other simple stuff.
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!