 |
By Michael Peters (mpeters) from Raleigh.pm Date: Tuesday, 22 June 2010 15:00 Duration: 40 minutes Target audience: Any Language: English Tags: applications security web |
Web Security 101
You can find more information on the speaker's site:
Security is important in any programming environment but programming for the web has some unique possibilities and hazards. Most web programmers have little to no training in security and lots of web development is done by people who don't wear a full-time developer hat. Add to this the fact that bad security on a web project can have very public, very embarassing, and sometimes legal consequences.
This talk will walk through the basics of web security without focussing too much on the particular tools that you choose. The concepts are universal, although most examples will be in Perl. We'll also look at various attack vectors (SQL Injection, XSS, CSRF, and more) and see how you can avoid them. Whether you're an experienced web developer (we all need reminding) or just starting out, this talk can help avoid being the next easy harvest of The Bad Guys.
- Alek Rollyson (al3k)
- David H. Adler (dha)
- Dave Rolsky (autarch)
- Max Shughart (Maxdash McSlam)
- Byron Austin
- Devin Austin (dhoss)
- jerry gay (particle)
- Julie Eberhart
- Matt Meinwald
- Adam Prime (jsut)
- David Laulusa
- Wes Malone (wesm)
- Mark Stosberg
- Petar Puskarich
- Michael Peters (mpeters)
- Brian Shilling
- Ed Szynaka
- John Judd
- Michael Moser
- Philip Henderson
- Kevin Shaum
- John Lightsey (J.D.)
- R Geoffrey Avery (rGeoffrey)
- Dallas Deeds
- Jon Miner (miner)
- Ashoka Kamineni
- Greg Estep
- R. Todd Williams
- Jon Gentle (atrodo)
