Minimal effort web application security (a.k.a. how to make my job harder) (emf2014)
Chaos Computer Club - archive feed · Graham Sutherland
August 31, 201430m 9s
Audio is streamed directly from the publisher (cdn.media.ccc.de) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
In this talk I will present a few quick tips on making your web applications more resistant to common attack vectors, without putting a lot of effort in. In some cases, simply adding a line to a configuration file can completely prevent entire classes of attack from being viable. We'll take a look at hardening against XSS, SQL injection, clickjacking, password cracking, and a few other bits if there's time. With any luck, you'll make my job a bit more difficult.
about this event: https://c3voc.de
Topics
emf20141602014