Solved

Web apps compromise

Posted on 2009-05-11
1
152 Views
Last Modified: 2012-05-06
Does anyone have any best practice documentation on procedures to take once one of your web apps has been subject to either xss or sql injection? What actions do you take if you have an app that has been compromised etc? We are lucky to not have such a compromise but I want to look into best practice in case we are ever targetted?
0
Comment
Question by:pma111
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 70

Accepted Solution

by:
Jason C. Levine earned 250 total points
ID: 24360993
Hi pma111,

>>  once one of your web apps has been subject to either xss or sql injection?

The first thing to do is pay a security firm to do an audit and subject your app(s) to penetration testing.  Better to know NOW where your weaknesses or holes are and take steps to fix them.

If you have an app that is compromised, pull it down right away.  Better 24 hours of frustration for users than months or years of dealing with the fallout of ignored security.
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Foreword (July, 2015) Since I first wrote this article, years ago, a great many more people have begun using the internet.  They are coming online from every part of the globe, learning, reading, shopping and spending money at an ever-increasing ra…
It’s a strangely common occurrence that when you send someone their login details for a system, they can’t get in. This article will help you understand why it happens, and what you can do about it.
Use Wufoo, an online form creation tool, to make powerful forms. Learn how to selectively show certain fields based on user input using rules to gather relevant information and data from your forms. The rules feature provides you with an opportunity…
Learn how to set-up PayPal payment integration in your Wufoo form. Allow your users to remit payment through PayPal upon completion of your online form. This is helpful for collecting membership payments, customer payments, donations, and more.

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question