Index

A

absolute session timeouts, 141

Accept-Language headers, 129

access control

authentication. See authentication

authorization. See authorization

Access-Control-Allow-Origin HTTP headers, 165

access control lists (ACLs), 99–100

accounts

default, 86

disabling, 78, 86

lockout, 84–86

permissions, 240–241

single account security, 238–240

unique, 124

ACLs (access control lists), 99–100

active scanners, 307

Acunetix Web Vulnerability Scanner tool, 307

ad-hoc source control, 262

ad-hoc SQL, 236–237, 244–246

Adobe Flash

cross-domain policy file, 161–163

LSOs, 132

Advanced Encryption Standard (AES) algorithm, 20, 259, 302

affected users, 43

Ajax programming (Asynchronous JavaScript And Xml), 165

alert method, 176

Amazon.com, 34, 82, 99

Android Market ...

Get Web Application Security, A Beginner's Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.