Read this whole guide offline with no ads, for a low price!
Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31)

Need more practice? 300 additional Security+ questions!
Get It Here!

Custom Search







Table Of Contents  CertiGuide to Security+
 9  Chapter 2:  Communication Security (Domain 2.0; 20%)
      9  2.3  The Web
           9  2.3.4  Vulnerabilities

Previous Topic/Section
Web Pages that Show Up Everywhere
Previous Page
Pages in Current Topic/Section
1
Next Page
2.3.4.1  Java Script
Next Topic/Section

Web Software Flaws

And finally, all together now: Web servers and browsers, just like other software programs, have implementation flaws that have either been discovered, or will almost certainly eventually be discovered. Keep the server, including the web software server itself AND ALL OTHER HELPER PROGRAMS ON THE WEB SERVER, like Perl, PHP, database interfaces, etc., up-to-date. The same goes for browser software, and its helper programs (“Macromedia Flash, anyone?”) up-to-date. We’ll say more about this in Section 3.5.3, when discussing web server hardening.

There are many other aspects of web vulnerability – too many to list here. Check the WWW Security FAQ 214 for additional information on the vulnerabilities discussed in section 2.3.4.

The following are specific areas of web vulnerability that you should know about for Security+.


 __________________

214. http://www.w3.org/Security/Faq/www-security-faq.html

Previous Topic/Section
Web Pages that Show Up Everywhere
Previous Page
Pages in Current Topic/Section
1
Next Page
2.3.4.1  Java Script
Next Topic/Section

If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support!
Donate $2
Donate $5
Donate $10
Donate $20
Donate $30
Donate: $



Home - Table Of Contents - Contact Us

CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004

Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.