Ask Slashdot: Writing Hardened Web Applications?

Posted by Unknown on Monday January 2, 2012 @12:10PM from the i-hear-plain-text-password-databases-are-secure dept.

rhartness writes "I am a long time Software Engineer, however, almost all of my work has been developing server-side, intranet applications or applications for the Windows desktop environment. With that said, I have recently come up with an idea for a new website which would require extremely high levels of security (i.e. I need to be sure that my servers are as 100% rock-solid, unhackable as possible.) I am an experienced developer, and I have a general understanding of web security; however, I am clueless of what is requires to create a web server that is as secure as, say, a banking account management system. Can the Slashdot community recommend good websites, books, or any other resources that thoroughly discuss the topic of setting up a small web server or network for hosting a site that is as absolutely secure as possible?"

1 of 333 comments (clear)

Min score:

Reason:

Sort:

Re:If you don't know, you can't do it by Anonymous Coward · 2012-01-02 13:32 · Score: 0, Redundant

1) Secure all the attack vectors: CHECK
2) Keep all the office machines up to date and scan email attachments: CHECK
3) Realize that #2 is #1: CHECK
4) Call BS on previous post: CHECK