Solved

Web apps compromise

Posted on 2009-05-11
1
151 Views
Last Modified: 2012-05-06
Does anyone have any best practice documentation on procedures to take once one of your web apps has been subject to either xss or sql injection? What actions do you take if you have an app that has been compromised etc? We are lucky to not have such a compromise but I want to look into best practice in case we are ever targetted?
0
Comment
Question by:pma111
1 Comment
 
LVL 70

Accepted Solution

by:
Jason C. Levine earned 250 total points
ID: 24360993
Hi pma111,

>>  once one of your web apps has been subject to either xss or sql injection?

The first thing to do is pay a security firm to do an audit and subject your app(s) to penetration testing.  Better to know NOW where your weaknesses or holes are and take steps to fix them.

If you have an app that is compromised, pull it down right away.  Better 24 hours of frustration for users than months or years of dealing with the fallout of ignored security.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

New Relic: Our company recently started researching several products to figure out what were the best ways for us to increase our web page speed and to quickly identify performance problems that we may be having. One of the products we evaluated wa…
International Data Corporation (IDC) prognosticates that before the current the year gets over disbursing on IT framework products to be sent in cloud environs will be $37.1B.
Wufoo.com provides powerful tools for surveying targeted groups, and utilizing data from completed surveys to find trends, discover areas of demand or customer expectation, and make business decisions on products or services.
Learn how to set-up custom confirmation messages to users who complete your Wufoo form. Include inputs from fields in your form, webpage redirects, and more with Wufoo’s confirmation options.

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question