[OWASP-cheat-sheets] Add Log Injection Prevention to: Injection_Prevention_Cheat_Sheet_in_Java

Dominique Righetto dominique.righetto at owasp.org
Mon Nov 26 13:03:23 UTC 2018


Hi,

Info has been added:

https://www.owasp.org/index.php/Injection_Prevention_Cheat_Sheet_in_Java#Log_Injection

--
Cordialement, Best regards,
Dominique Righetto
dominique.righetto at gmail.com
<dominique.righetto at gmail.com>dominique.righetto at owasp.org
<dominique.righetto at gmail.com>
https://righettod.eu
GPG: 323D19BA


On Wed, Oct 31, 2018 at 6:01 PM Dave Wichers <dwichers at gmail.com> wrote:

> Hey, I was looking at:
>
> https://www.owasp.org/index.php/Injection_Prevention_Cheat_Sheet_in_Java
>
> And noticed it does not cover Java log injection. There aren't any good
> articles on this subject really, but I did find this blog post:
>
> https://github.com/javabeanz/owasp-security-logging/wiki/Log-Forging
>
> Could you take the time to add a section on Log Injection prevent and
> reference/include this recommendation, and anything else good you can find
> for the Java world??
>
> Thanks, Dave
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-cheat-sheets/attachments/20181126/f0eae8c6/attachment.html>


More information about the OWASP-cheat-sheets mailing list