April 2011
Intermediate to advanced
500 pages
16h 12m
English
Content preview from Developer's Guide to Web Application Security
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Q: My company doesn’t have any programmers, but we use many commercial Web-
based applications. Are these safer? If not, how can I learn about their flaws?
A: Unfortunately, you can’t assume that a program written by someone else is any
better than one you’d write yourself. If you are lucky enough to have access to
the source code for a program you are purchasing, as is the case with Perl, PHP,
and other scripted languages, you can examine this source code for errors. As
always, if you don’t have the necessary experience, you can hire a respected
auditor to help you.You can also find many repositories of known vulnerabili-
ties, with one of the best being ...