Re: tips to secure a web application

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Friday 20 February 2004 01:39, Lars Troen wrote:
> Matthieu,
> Nice article you wrote btw. Just wanted to say that web developers
> should have tried the challenge on http://try2hack.nl just to learn a
> some hacker technics and from common errors on web pages.


Nice site, will check it when I have time. Something similar is available at 
hackthissite.org it has different levels and more complete sites to hack 
though.


> Lars
>
> -----Original Message-----
> From: ermelir [mailto:ermelir@xxxxxxxxxxx]
> Sent: 19. februar 2004 18:13
> To: webappsec@xxxxxxxxxxxxxxxxx
> Subject: Re: tips to secure a web application
>
> hi Annie,
>
> In my tutorial I approach login methods based on java which can be an
> help for hackers by the way were some datas are send to client.
> I don't know all methods to attack a database with JDBC, but their
> probably some holes, like in others methods :)
> you have fewer risks? perhaps I suppose because this method is less use
> than others, but it just my point of view and without real bases :) I'm
> not a security expert, just a developer which is interet in security
> issues ;)
> Perhaps their is more specialist like me on this mailing-list :)
> best regards
>
> Matthieu

- -- 
Martin Tsachev
http://martin.f2o.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)

iD8DBQFANea1ypytlz9Py3wRAo0WAJ4vci4rlx6d6mr7Bx+yc3ZmPivhgQCgss0Y
VcvpnHOZTIZy07nKy65dnQU=
=wMTC
-----END PGP SIGNATURE-----