Solved

Advice on Security , evolution of A perl Application

Posted on 2004-09-07
10
141 Views
Last Modified: 2010-03-05
Hello Dear Experts

I have developed a Web Based Tool in Perl with Oracle as backend . I have used all the cycles of SDLC and now I need to know more about the Security of such kind of application, Evolution .
What I need to know more is what are the special security features that one needs to implement in web based tool and what kinds of tools are used in testing
Thank you
Ronan
0
Comment
Question by:ronan_40060
  • 5
  • 4
10 Comments
 
LVL 16

Assisted Solution

by:xDamox
xDamox earned 200 total points
Comment Utility
Hi,

you should try Nessus on your server which will also test out your script see if it resolvs any error you may have like cross site scripting.
0
 
LVL 48

Expert Comment

by:Tintin
Comment Utility
Whisker is a good tool for checking cross-site scripting flaws.

http://www.securityfocus.com/tools/727
0
 
LVL 9

Author Comment

by:ronan_40060
Comment Utility
Thanks Tintin and xDamox

Well few more info required. generally what are the difficulties encountered in the Maintenance of such application.
0
 
LVL 48

Expert Comment

by:Tintin
Comment Utility
By "application" are you referring to your own or the tools?
0
 
LVL 9

Author Comment

by:ronan_40060
Comment Utility
Hello Tintin The application is the one which I developed with Perl and Oracle
its a Web based applicationwhich provides the users the statictics of a an already built tool so I developed the functionalities for the statistics of the existing tool
0
Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 48

Accepted Solution

by:
Tintin earned 200 total points
Comment Utility
Maintainance really comes down to how well the application is designed and written and whether the requirements change.
0
 
LVL 9

Author Comment

by:ronan_40060
Comment Utility
Tintin
could you suggest me a good article on Maintenance and security esp of perl Applications ?
Thanks for your valuable time
Ronan
0
 
LVL 48

Expert Comment

by:Tintin
Comment Utility
Is it a Perl/CGI application?
0
 
LVL 9

Author Comment

by:ronan_40060
Comment Utility
hello Tintin its Perl application with oracle as backend
0
 
LVL 48

Expert Comment

by:Tintin
Comment Utility
You originally mentioned it was a web based Perl tool, so I naturally assumed it was CGI.  How do you access the interface then?
0

Featured Post

Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

Join & Write a Comment

Suggested Solutions

A year or so back I was asked to have a play with MongoDB; within half an hour I had downloaded (http://www.mongodb.org/downloads),  installed and started the daemon, and had a console window open. After an hour or two of playing at the command …
Checking the Alert Log in AWS RDS Oracle can be a pain through their user interface.  I made a script to download the Alert Log, look for errors, and email me the trace files.  In this article I'll describe what I did and share my script.
Explain concepts important to validation of email addresses with regular expressions. Applies to most languages/tools that uses regular expressions. Consider email address RFCs: Look at HTML5 form input element (with type=email) regex pattern: T…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now