[Owasp-singapore] How to not have your Web site hacked like Sony's

Wong Onn Chee ocwong at usa.net
Mon Jul 7 22:18:07 EDT 2008


http://www.computerworld.com.au/index.php?id=539374686&eid=-144

""They're not doing input validation," he explains. "They're not looking 
at it and saying 'hey, this is not regular user input' -- that's the 
simple version."

But Web administrators have to shoulder the burden of blame too, Bourne 
adds. They're responsible for creating a layered security approach to 
protect against known and yet-to-be-discovered exploits."




More information about the Owasp-singapore mailing list