"web applications" tag
Secured!

Securing Apache, Part 9: Attacks that Target PHP-based Instances

Beginning with Part 1 of this series, we have covered all major attacks on Web applications and servers, with examples of vulnerable PHP code. In this article, we will cover those attacks that…

Securing Database Servers

Securing Database Servers

With the ever-expanding data requirements for Web applications, database administrators often configure security parameters at the OS and database layer. Unfortunately, administrators seldom consider implementing security at a network layer to protect the…

Secured!

Securing Apache, Part 8: DoS & DDoS Attacks

In this part of the series, we focus on DoS/DDoS attacks, which have been among the major threats to Web servers since the beginning of the Web 2.0 era. Denial of Service (DoS)…

Web frameworks

All You Need to Know About Web Application Frameworks

Jargon fills our everyday lives on the Internet. The days when HTML and JavaScript used to be “cool” technologies are long gone. They are still very much an underlying part of the Net,…

Getting started with Clojure

Getting Started with Clojure

Clojure is a dynamic, general purpose programming language that targets the Java Virtual Machine (JVM) and the Common Language Runtime (CLR). It is designed for work and play. If you play around with…

Web application testing time...

The Selenium Web Application Testing Framework

The more Web applications we use, the more tools are needed to automate the testing process, for which there are many options that simplify the process. Since testing processes and methods vary from…

Locked!

Securing Apache, Part 7: Fool-proofing the Server OS

Moving deeper into Web application and Apache security, let’s now focus on OS commanding attacks, and those that lead to the disclosure of crucial information and server directory paths. The attacks described below…

lighttpd + SQLite

lighttpd & SQLite: A Lightweight Web Server and Database Platform

This article demonstrates the setting up of a lightweight Web server and database platform, using the lighttpd Web server and the SQLite database management system (DMS) instead of the LAMP stack. These two…

WordPress plugin development

WordPress Plugin Development Basics

WordPress is by far one of the best content management systems, with a fantastic framework for customisation. The use of plugins, themes and multi-site options has made it very attractive. In this article,…

Secured!

Securing Apache, Part 5: HTTP Message Architecture

In the last four articles in this series, we have discussed SQL injection, XSS, CSRF, XST and XSHM attacks, and security solutions. This article focuses on attacks exploiting the HTTP message architecture in…

All published articles are released under Creative Commons Attribution-NonCommercial 3.0 Unported License, unless otherwise noted.
Open Source For You is powered by WordPress, which gladly sits on top of a CentOS-based LEMP stack.

Creative Commons License.