What's the Best Way to Find Web Security Flaws?

With all of the potential ways the bad guys can exploit websites (literally thousands), many people want to know what the best way is to actually uncover these flaws. Well, there’s no magic bullet answer, however, generally speaking Web flaws can be discovered in one of two ways: Poking and prodding the website using manual […]

Read More →

Why Web Security is Not Just IT’s Problem

What’s your take on Web security? Do you see it as one of those techie things that other people should be handling? Or do you see it as your responsibility to ensure everything associated with your Web presence is in check? Well, according to a study by Avira, 26% of the people surveyed claim they […]

Read More →

htaccess files should not be used for security restrictions

According to Apache documentation: .htaccess files (or “distributed configuration files”) provide a way to make configuration changes on a per-directory basis. A file, containing one or more configuration directives, is placed in a particular document directory, and the directives apply to that directory, and all subdirectories thereof. Many PHP web applications use .htaccess files to restrict […]

Read More →