The explosive growth in the Internet has also driven an explosive growth in development tools, programming languages, web browsers, databases, and different client-server models. The unfortunate result is that complex models often require additional controls to secure the model. This chapter covers the absolute bare minimum set of controls that should be reviewed. This chapter covers the following:
• How to audit a web server
• How to audit a web application
Few technology inventions have changed our lives as much—or as quickly—as web applications. The web interface has grown from static pages to an incredibly interactive blend of capabilities driven by an army of creative programmers. ...