« Tool: untidy XML Fuzzer beta 2 is out | Main | Announcement: WASC and OWASP Joint Blackhat Vegas Party »

Incorrect configuration can open Web sites to application security attacks

Bryan Sullivan has just published  Incorrect configuration can open Web sites to application security attacks the second half of Debugging Application Security Vulnerabilities in Web.config Files. I've worked with Bryan at SPI Dynamics and he's a really sharp guy. As a matter of fact I'm helping to peer review an ajax security book he is co authoring for Addison Wesley. Good stuff.

Article Link: http://www.securitypark.co.uk/article.asp?articleid=27000&CategoryID=1

Comments

Feed You can follow this conversation by subscribing to the comment feed for this post.


All Comments are Moderated and will be delayed!


Post a comment

Verify your Comment

Previewing your Comment

This is only a preview. Your comment has not yet been posted.

Working...
Your comment could not be posted. Error type:
Your comment has been saved. Comments are moderated and will not appear until approved by the author. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Working...







Remember personal info?