Security Information and Review

Collection of security information and review

Posts Tagged 'Web Security'

Best Practices to Build Web Application More Secure

Author : Admin

In this discussion, we will learn best practices to build web application more secure, such as tips and tricks. In the previous discussion, we have learned how to protect web application files but overall protect web application in every sections. We will discuss a set of best practices that if practiced will result in better security for our web applications.

In our web applications, we often use authentication information to restricted access to our applications. The best practices for this situation is store authentication data way from the web document tree and make sure our application read authentication related files from outside the web document tree. … continue reading : Best Practices to Build Web Application More Secure.

10 October 2009 at 17:11 - Comments

Controlling Access Web Application with Web Based Basic Authentication

Author : Admin

If we want to restrict access to our web based application, we can use web based authentication. In this discussion, we will learn how to protect our web based application with web based basic authentication. It’s simple authentication that it’s very common use in the world in various web server.

We can use our web server’s basic authentication scheme quite easily with .htaccess file in our web directory. In this example, we will restrict access to directory in our web based application : http://www.widyani.com/basic_auth. We can create and edit .htaccess file in the %DocumentRoot%/basic_auth, … continue reading : Controlling Access Web Application with Web Based Basic Authentication.

10 October 2009 at 01:33 - Comments

Security Challenges of the Web Application Service

Author : Admin

An enterprise web application service, we can configure and use a web application services in many ways. See detail at Introduction and Guide How to Build Web Application Service, find more about many ways that can be used to provide web application services. In this discussion, we must give more attention about security of web application services. Each of ways to build web application services has unique security challenges. Whatever way we take to build web application services. … continue reading : Security Challenges of the Web Application Service.

25 July 2009 at 14:39 - Comments

Hardening Web Application Security with SSL

Author : Admin

These days, internet or world wide web is a network for everyone, with thousands of businesses, large and small. When data travels from one point of the internet to another, it goes through a number of computers such as router, gateways and others network devices and interception is a possibility at one of these nodes. So, we need a security protocol that ensures secured transactions between the customer’s web browser and the web server. It’s called SSL / TLS protocol, provides endpoint authentication and communications confidentiality over the internet using cryptography and designed to prevent eavesdropping, tampering and message forgery. … continue reading : Hardening Web Application Security with SSL.

23 July 2009 at 11:39 - Comments

The Guideline to Improve Web Application Security

Author : Admin

In the previous discussion, The Essential Guidelines for Securing Platform Web Application that there are two category in the web vulnerability. In this discussion we will discuss about how to create web application more secure, with high availability and stable. There are several things that must be considered to building web application more secure and stable. We will discuss more detail in this discussion.

 

If our application supports individual users, then record how users must authenticate to the application with some of the authenticate methods, such HTTP Basic, HTTP Digest, HTTP NTLM and Form Based. Keep in mind that challenge / response mechanisms do not protect passwords with 100 percent security. … continue reading : The Guideline to Improve Web Application Security.

19 July 2009 at 03:34 - Comments

The Essential Guidelines for Securing Platform Web Application

Author : Admin

In this discussion, we will discuss about how to a make secure web application. As we know, there are two categories into which web vulnerabilities, the platform of web server and web application itself. The first category contain vulnerabilities within the platform of web server such Linux, MS Windows, Apache, IIS, MySQL, MS SQL, Oracle and others. The other category is web application itself such programming errors, enable malicious code and an attacker to execute arbitrary database query and others type of the web application vulnerabilities. … continue reading : The Essential Guidelines for Securing Platform Web Application.

19 July 2009 at 02:28 - Comments