SlideShare uses cookies to improve functionality and performance, and to provide you with relevant advertising. If you continue browsing the site, you agree to the use of cookies on this website. See our User Agreement and Privacy Policy.
SlideShare uses cookies to improve functionality and performance, and to provide you with relevant advertising. If you continue browsing the site, you agree to the use of cookies on this website. See our Privacy Policy and User Agreement for details.
Successfully reported this slideshow.
Activate your 14 day free trial to unlock unlimited reading.
4.
Before dive into...
http://bit.ly/PyramidSecurity-
5.
What about Security
applicatio csrf,
n injections,
Tons of topics we xss
could discuss identifier,
framework authn,
Can be categorized authz
into some layers poisoning,
infra-
structure sniffing,
We focus today
“framework”layer
ddos
shoulder
social
hack
6.
No Security Pyramid
development.ini
production.ini
proj/templates/mytemplate.pt
proj/models.py
proj/views.py
proj/scripts
proj/scripts/initializedb.py
proj/scripts/__init__.py
proj/__init__.py
proj/tests.py
small starting...
7.
No Security Pyramid
development.ini
Configuration
production.ini
proj/templates/mytemplate.pt
proj/models.py
MV of MVC
proj/views.py
proj/scripts
proj/scripts/initializedb.py
proj/scripts/__init__.py
proj/__init__.py Make WSGI app
proj/tests.py
small starting...