Backup your website!
You never know when a hacker will deface it due to unknown vulnerabilities. Hackersblog has an example of a defaced website. The only way to combat this is to review your site Tell us how we can help.
Web application testing Methods start with Alpha
What is the first method used in evaluating a web application? It starts with the Alpha test How do you know the level of security with your website application? 1. A certain amount of testing must be started – our Alpha testing starts a security profile. 2. A Second level of testing is the Sigma … Read more
Security is doing all the little things – including testing
When one thinks about security, one should think about the little things that have to be done. Patching systems, rebooting. patching all the applications. checking the Access control Lists for new apps and ports. ensuring the web apps are checked not just for bugs, but insecurities. And finally test – and check for open and … Read more
PHP CGI Query String Parameter Processing Remote Code Execution
This vulnerability in PHP 5.3.12 and 5.4x before 5.4.2 when configured as a CGI script (php-cgi), a query which lacks and = sign will not be properly handled. So a remote attack may be possible. And the problem will be that one will not know it is on the web server, unless one check … Read more
Computers are managed by people – and thus mistakes get made.
We are all busy – the department is smaller, as we lost Jim, he retired. John was fired in the last layoffs. But what happened – we soldiered on. We have gotten new servers installed, systems retired taught the users a new program. It is as if we had Jim and John still here. But … Read more