Re: [WEB SECURITY] Testing Strategy

From: Victor Shamanovsky <victor.shamanovsky_at_nospam>
Date: Tue Oct 23 2007 - 01:43:46 GMT
To: "áíäÇ ÇÈæ ÔÑíÚÉ" <linalinaam@yahoo.com>

is this limited only to static pages in the server directories? what about db driven stuff?
please do provide more information.

On 10/22/07, áíäÇ ÇÈæ ÔÑíÚÉ <linalinaam@yahoo.com> wrote:
>
> Hello All,
>
> I have implemented a security tool against unathorised tampering. This
> tool can detect anry recoevery any tampering problem for web pages on a web
> server. How can I test my proposed security tool? or Could you give me
> example about testing strartegy for any security tool.
>
> My research addresses two trends including the security and performance.
> My idea is to make alteration on the web page code and then run my proposed
> sytem to detect this alteration and makes recovery if any tampering taken
> place. After that, check that manually.
> any feedback or comment is very welcome.
>
> Regards,
>
> __________________________________________________
> Do You Yahoo!?
> Tired of spam? Yahoo! Mail has the best spam protection around
> http://mail.yahoo.com
>

This message: [ Message body ]
Next message: Eugene Siu: "RE: [WEB SECURITY] Microsoft releases XSSDetect code analysis"
Previous message: Chris Weber (Casaba Security): "[WEB SECURITY] Microsoft releases XSSDetect code analysis"
In reply to: áíäÇ: "[WEB SECURITY] Testing Strategy"
Next in thread: áíäÇ: "Re: [WEB SECURITY] Testing Strategy"
Reply: áíäÇ: "Re: [WEB SECURITY] Testing Strategy"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]