Slashdot Mirror

← Back to Stories (view on slashdot.org)

Honeynet Delineates Web Application Threats

Posted by kdawson on from the spider-to-fly dept.

An anonymous reader sends us to a technical white paper written by the Honeynet Project & Research Alliance: Know Your Enemy: Web Application Threats. Based on analysis of malware collected by the project, the paper outlines a number of HTTP-based attacks against web applications and some ways of protecting Web servers. Included are code injection, remote code-inclusion, SQL injection, cross-site scripting, and exploitation of the PHPShell application.

2 of 40 comments (clear)

  1. Hear that understanding? by Anonymous Coward · · Score: 2, Insightful

    Or maybe like the science articles the subject flies over most heads. Just because it's called "news for nerds" doesn't mean that the majority have a nerds understanding. Now the YRO section is more illustrative of what slashdot has become.

  2. Re:Not malware or a bot, but still an attack. by tooyoung · · Score: 2, Insightful

    How exactly does posting a link 300 times do anything?
    Well, talking about it will give you a nice slashvertisement for Bloomingpedia.org, whatever that is.