Solved

Web apps compromise

Posted on 2009-05-11
1
149 Views
Last Modified: 2012-05-06
Does anyone have any best practice documentation on procedures to take once one of your web apps has been subject to either xss or sql injection? What actions do you take if you have an app that has been compromised etc? We are lucky to not have such a compromise but I want to look into best practice in case we are ever targetted?
0
Comment
Question by:pma111
1 Comment
 
LVL 70

Accepted Solution

by:
Jason C. Levine earned 250 total points
ID: 24360993
Hi pma111,

>>  once one of your web apps has been subject to either xss or sql injection?

The first thing to do is pay a security firm to do an audit and subject your app(s) to penetration testing.  Better to know NOW where your weaknesses or holes are and take steps to fix them.

If you have an app that is compromised, pull it down right away.  Better 24 hours of frustration for users than months or years of dealing with the fallout of ignored security.
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Any open source type dating sites? 2 139
Live mode in DW, need to creae Session 4 94
Reducing the size of certificate chain 2 76
Windows Tool to Build Android and iOS App 3 76
Foolproof security solutions has become one of the key necessities of every e-commerce or Internet banking website. If you too own an online shopping site then its vital for you to equip your web portal with customer security features that can allow…
What is Node.js? Node.js is a server side scripting language much like PHP or ASP but is used to implement the complete package of HTTP webserver and application framework. The difference is that Node.js’s execution engine is asynchronous and event…
This video teaches users how to migrate an existing Wordpress website to a new domain.
Learn how to set-up PayPal payment integration in your Wufoo form. Allow your users to remit payment through PayPal upon completion of your online form. This is helpful for collecting membership payments, customer payments, donations, and more.

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question