Web Applications Security (LAMP/PHP)

1,261 views

Published on

Published in: Technology
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
1,261
On SlideShare
0
From Embeds
0
Number of Embeds
10
Actions
Shares
0
Downloads
1
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Web Applications Security (LAMP/PHP)

  1. 1. PHP web applications’ security Mohamed Almasry CitPoint workshop - May 25, 2008
  2. 2. Introduction• What Is Computer Security?• Why Absolute Computer Security Is Impossible• What Kinds of Attacks Are Web Applications Vulnerable To?
  3. 3. How can some of PHP features provide amalicious attacker with detailed information ? • Register Globals • Error Reporting
  4. 4. Principles• Defense in Depth• Least Privilege• Simple Is Beautiful• Minimize Exposure
  5. 5. Practices• Balance Risk and Usability• Track Data• Filter Input• Escape Output
  6. 6. PHP security in depth• Forms and URLs• Databases and SQL• Sessions and Cookies• Includes• Files and Commands• Authentication and Authorization• Shared Hosting• Configuration Directives• Functions• Cryptography
  7. 7. Forms and Data• A user can send data to your application in three predominant ways: – In the URL (e.g., GET data) – In the content of a request (e.g., POST data) – In an HTTP header (e.g., Cookie)
  8. 8. Forms and URLs• Forms and Data• Semantic URL Attacks• File Upload Attacks• Cross-Site Scripting• Cross-Site Request Forgeries• Spoofed Form Submissions• Spoofed HTTP Requests
  9. 9. Databases and SQL• Exposed Access Credentials• SQL Injection• Exposed Data
  10. 10. Sessions and Cookies- Cookie Theft- Exposed Session Data- Session Fixation- Session Hijacking
  11. 11. Includes• Exposed Source Code• Backdoor URLs• Filename Manipulation• Code Injection
  12. 12. Files and Commands• Traversing the Filesystem• Remote File Risks• Command Injection
  13. 13. Authentication and Authorization• Brute Force Attacks• Password Sniffing• Replay Attacks• Persistent Logins

×