Posts Tagged ‘web application’

Web Application (In)Security Uncensored

Tuesday, November 13th, 2007

Oggi 13 novembre nell’ambito delle serate a tema del LUG Trieste, un talk sulle insicurezze del web, appuntamento alle 2030 a Trieste presso la Casa delle Culture di Ponziana in via Orlandini 38 (Visualizza su GoogleEarth, Istruzione su come arrivarci).

Web 2.0, Ajax, Javascript, Flash, una miriade di tecnologie per
aumentare le funzionalita` del moderno World Wide Web.
Una moltitudine di applicazioni e servizi sono fruibili con un semplice
web browser, tutto viene fatto con un web browser.
Bello e comodo, ma sicuro?
Panoramica sulle sicurezze, anzi insicurezze, delle moderne applicazioni
web.

PHPIDS

Saturday, October 6th, 2007

PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in exactly the way you want it to. Based on a set of approved and heavily tested filter rules any attack is given a numerical impact rating which makes it easy to decide what kind of action should follow the hacking attempt. This could range from simple logging to sending out an emergency mail to the development team, displaying a warning message for the attacker or even ending the user’s session.

PHPIDS enables you to see who’s attacking your site and how and all without the tedious trawling of logfiles or searching hacker forums for your domain. Last but not least it’s licensed under the LGPL!

Website: http://php-ids.org/
Demo: http://php-ids.org/demo/

I am using it from a lot of time and is a good score based IDS for web application developers.

Web Application Scaling: Deal with big sites

Monday, July 30th, 2007