June 2018
Intermediate to advanced
294 pages
7h 5m
English
Content preview from Practical Web Penetration Testing
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Trust levels
Trust levels represent the access rights that the application will grant to any entity that is interacting with the web application. For example, if the web application stores its data in the database, in the backend, then ask yourself this question: who interacts with the database? The simple answer would be the Database Administrator, Database Read Users, and Database Read/Write Users. You should ask this question for every item that interacts with the web application (for example, web services, filesystems, logs, and so on).