Re: PHP Session Security
Posted: Sat Jan 24, 2009 7:54 am
Yes. It uses very wise infrastructure to detect badly written code too. It does not just protect attacks, but also make suggestions and notify possible hacks. It covers many security related topics and features that Joomla, Wordpress or other systems do not.rami wrote:well i am just sending my query trying to know...kaisellgren wrote:xfactor5 wrote:
So you wanted me to share about other attacks? I think there are enough articles on the Internet about security, I'll name you a few topics you may want to know about: CSRF, SQL Injections, Chain Attacks, Header Injections, Session Fixation, Session Hijacking, Man-In-The-Middle, Session Forging, Cookie Forging, Session Poisoning, Register Globals, Magic Quotes, XSS, Data Hashing, Installer Lock, Remote Code Attacks, IP Banning, Brute Force, Error Reporting, CAPTCHA Protection, Flooding, Salting, Saucing, Peppering, Truncation attacks, Weak Randomness, Filesystem permissions, Buffer Overflows, Session Management, IP logging, SSL, Cookie encryption, I could just keep going...
does the application u write consider or migitage all these (I could just keep going... ) vunerabilities/threats in to account?