Solved

Web apps compromise

Posted on 2009-05-11
1
147 Views
Last Modified: 2012-05-06
Does anyone have any best practice documentation on procedures to take once one of your web apps has been subject to either xss or sql injection? What actions do you take if you have an app that has been compromised etc? We are lucky to not have such a compromise but I want to look into best practice in case we are ever targetted?
0
Comment
Question by:pma111
1 Comment
 
LVL 70

Accepted Solution

by:
Jason C. Levine earned 250 total points
Comment Utility
Hi pma111,

>>  once one of your web apps has been subject to either xss or sql injection?

The first thing to do is pay a security firm to do an audit and subject your app(s) to penetration testing.  Better to know NOW where your weaknesses or holes are and take steps to fix them.

If you have an app that is compromised, pull it down right away.  Better 24 hours of frustration for users than months or years of dealing with the fallout of ignored security.
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
VBA for Outlook Web App 5 230
WordPress site & webmasters 4 121
How to protect website documents without Windows Security 7 97
pay per click 3 130
Things That Drive Us Nuts Have you noticed the use of the reCaptcha feature at EE and other web sites?  It wants you to read and retype something that looks like this.Insanity!  It's not EE's fault - that's just the way reCaptcha works.  But it is …
International Data Corporation (IDC) prognosticates that before the current the year gets over disbursing on IT framework products to be sent in cloud environs will be $37.1B.
This video teaches users how to migrate an existing Wordpress website to a new domain.
Use Wufoo, an online form creation tool, to make powerful forms. Learn how to selectively show certain fields based on user input using rules to gather relevant information and data from your forms. The rules feature provides you with an opportunity…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now