[ Security for Web Developers ] :: 05: Security on the Server Side

Your server, your database and your site’s security

  • Do you host your own site, or is it hosted?
  • How many sites are hosted on the same server as yours?
  • What programming languages and platforms does it support?
  • How many open ports and opportunities for interaction does it offer?

A lot depends on properly sanitizing input that comes from the client to your server and database. Different languages have different techniques (like Perl’s “taint” system), but if you fail to use them your site can be vulnerable to Cross-Site Scripting (XSS).

Assignment: XSS Me

Watch this video, install this Firefox Add-on and unleash it on your own site or your test sites:

Next: https://schoolforhackers.com/security-web-developers-security-site/

One Reply to “[ Security for Web Developers ] :: 05: Security on the Server Side”

Comments are closed.