Web Software Flaws
And finally, all together now: Web servers and browsers, just like other software programs, have implementation flaws that have either been discovered, or will almost certainly eventually be discovered. Keep the server, including the web software server itself AND ALL OTHER HELPER PROGRAMS ON THE WEB SERVER, like Perl, PHP, database interfaces, etc., up-to-date. The same goes for browser software, and its helper programs (Macromedia Flash, anyone?) up-to-date. Well say more about this in Section 3.5.3, when discussing web server hardening.
There are many other aspects of web vulnerability too many to list here. Check the WWW Security FAQ 214 for additional information on the vulnerabilities discussed in section 2.3.4.
The following are specific areas of web vulnerability that you should know about for Security+.
Home - Table Of Contents - Contact Us
CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004
Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.