By Michael Peters (‎mpeters‎) from Raleigh.pm
Date: Tuesday, 22 June 2010 15:00
Duration: 40 minutes
Target audience: Any
Language: English
Tags: applications security web

Web Security 101

You can find more information on the speaker's site:


Security is important in any programming environment but programming for the web has some unique possibilities and hazards. Most web programmers have little to no training in security and lots of web development is done by people who don't wear a full-time developer hat. Add to this the fact that bad security on a web project can have very public, very embarassing, and sometimes legal consequences.

This talk will walk through the basics of web security without focussing too much on the particular tools that you choose. The concepts are universal, although most examples will be in Perl. We'll also look at various attack vectors (SQL Injection, XSS, CSRF, and more) and see how you can avoid them. Whether you're an experienced web developer (we all need reminding) or just starting out, this talk can help avoid being the next easy harvest of The Bad Guys.

Attended by: