Forum Home
PC World Chat
Thread ID: 61835	2005-09-18 04:04:00	Web Goat: learning about secure web appliocations	Graham L (2)	PC World Chat

Post ID	Timestamp	Content	User
389103	2005-09-18 04:04:00	This, from the latest comp . risks (catless . ncl . ac . uk/Risks/24 . 04 . html), might be interesting to anyone who has a web site . WebGoat is a lessons based, deliberately insecure web application designed to teach web application security . Each of the 25 lessons provides the user an opportunity to demonstrate their understanding by exploiting a real vulnerability . WebGoat provides the ability to examine the underlying code to gain a better understanding of the vulnerability as well as provide runtime hints to assist in solving each lesson . V3 . 7 includes lessons covering most of the OWASP Top Ten vulnerabilities and contains several new lessons on web services, SQL Injection, and authentication . WebGoat 3 . 7 is available for free download from: . owasp . org/software/webgoat . html" target="_blank">www . owasp . org Simply unzip, run, and go to WebGoat in your browser to start learning . The OWASP Foundation is dedicated to finding and fighting the causes of insecure software . Find out more at http://www . owasp . org . As always, comp . risks is good value .	Graham L (2)
389104	2005-09-18 11:24:00	Waste of time, effort and space. How many website hosts run their own servers? Almost every conceivable web security vulnerability is a weakness server-side.	Greg (193)
389105	2005-09-20 03:35:00	This addresses weaknesses in the code of applications running on those servers.	Graham L (2)
389106	2005-09-20 04:23:00	Waste of time, effort and space. How many website hosts run their own servers? Almost every conceivable web security vulnerability is a weakness server-side.Come on Greg... Even i've run my own web server, and plan to again. About 1 in ten of the IPs attached to cable modems in this country seem to have some sort of server on them. Need i go on?	personthingy (1670)
1