 |
By Michael Peters (mpeters) from Raleigh.pm Date: Tuesday, 22 June 2010 15:00 Duration: 40 minutes Target audience: Any Language: English Tags: applications security web |
Web Security 101
You can find more information on the speaker's site:
Security is important in any programming environment but programming for the web has some unique possibilities and hazards. Most web programmers have little to no training in security and lots of web development is done by people who don't wear a full-time developer hat. Add to this the fact that bad security on a web project can have very public, very embarassing, and sometimes legal consequences.
This talk will walk through the basics of web security without focussing too much on the particular tools that you choose. The concepts are universal, although most examples will be in Perl. We'll also look at various attack vectors (SQL Injection, XSS, CSRF, and more) and see how you can avoid them. Whether you're an experienced web developer (we all need reminding) or just starting out, this talk can help avoid being the next easy harvest of The Bad Guys.
- R Geoffrey Avery (rGeoffrey)
- David H. Adler (dha)
- Michael Peters (mpeters)
- Dave Rolsky (autarch)
- Mark Stosberg
- Jon Miner (miner)
- John Lightsey
- Adam Prime (jsut)
- jerry gay (particle)
- Devin Austin (dhoss)
- Wes Malone (wesm)
- Byron Austin
- Alek Rollyson (al3k)
- Greg Estep
- Jon Gentle (atrodo)
- Michael Moser
- Max Shughart (Maxdash McSlam)
- Kevin Shaum
- R. Todd Williams
- Matt Meinwald
- Dallas Deeds
- Petar Puskarich
- Philip Henderson
- John Judd
- Ashoka Kamineni
- Brian Shilling
- David Laulusa
- Ed Szynaka
- Julie Eberhart
