eBook.de : Ihr Online Shop für eBooks, Reader, Downloads und Bücher

Connect 01/2015 eBook-Shops: Testsieger im epub Angebot, Testurteil: gut Die Welt: Kundenorientierte Internetseiten Prädikat GOLD
+49 (0)40 4223 6096
€ 0,00

Zur Kasse

Hack Proofing Coldfusion: The Only Way to Stop a Hacker Is to Think Like One

Sprache: Englisch.
von Syngress
Lieferbar innerhalb von zwei Wochen
Taschenbuch
Jetzt € 49,99* inkl. MwSt.
Bisher: € 53,49
Portofrei*
Produktdetails
Titel: Hack Proofing Coldfusion: The Only Way to Stop a Hacker Is to Think Like One
Autor/en: Syngress

ISBN: 1928994776
EAN: 9781928994770
Sprache: Englisch.
SYNGRESS MEDIA

Juni 2002 - kartoniert - 512 Seiten

The only way to stop a hacker is to think like one! ColdFusion is a Web application development tool that allows programmers to quickly build robust applications using server-side markup language. It is incredibly popular and has both an established user base and a quickly growing number of new adoptions. It has become the development environment of choice for e-commerce sites and content sites where databases and transactions are the most vulnerable and where security is of the utmost importance. Several security concerns exist for ColdFusion due to its unique approach of designing pages using dynamic-page templates rather than static HTML documents. Because ColdFusion does not require that developers have expertise in Visual Basic, Java and C++; Web applications created using ColdFusion Markup language are vulnerable to a variety of security breaches. Hack Proofing ColdFusion 5.0 is the seventh edition in the popular Hack Proofing series and provides developers with step-by-step instructions for developing secure web applications. Teaches strategy and techniques: Using forensics-based analysis this book gives the reader insight to the mind of a hacker Interest in topic continues to grow: Network architects, engineers and administrators are scrambling for security books to help them protect their new networks and applications powered by ColdFusion Unrivalled Web-based support: Up-to-the minute links, white papers and analysis for two years at solutions@syngress.com
Foreword

Chapter 1 Thinking Like a Hacker

Introduction

Understanding the Terms

A Brief History of Hacking

Why Should I Think Like a Hacker?

Mitigating Attack Risk in Your ColdFusion Applications

Validating Page Input

Functionality with Custom Tags and CFMODULE

The Top ColdFusion Application Hacks

Form Field Manipulation

URL Parameter Tampering

CFFILE, CFPOP, and CFFTP Tag Misuse

ColdFusion RDS Compromise

Understanding Hacker Attacks

Denial of Service

Virus Hacking

Preventing "Break-ins by Thinking Like a Hacker

Development Team Guidelines

QA Team Guidelines

IT Team Guidelines

Summary

Solutions Fast Track

Frequently Asked Questions

Chapter 2 Securing Your ColdFusion Development

Introduction

Session Tracking

CFID and CFTOKEN Issues

Error Handling

Verifying Data Types

Summary

Solutions Fast Track

Frequently Asked Questions

Chapter 3 Securing Your ColdFusion Tags

Introduction

Identifying the Most Dangerous ColdFusion Tags

Properly (and Improperly) Using Dangerous Tags

Using the Tag

Using the Tag

Using the Tag

Using the Tag

Using the Tag

Using the Tag

Using the Tag

Using the Tag

Using the Tag

Using the Tag

Using the connectstring Attribute

Using the dbtype=dynamic Attribute

Knowing When and Why You

Should Turn Off These Tags

Controlling Threading within Dangerous Tags

Working with Other Dangerous and Undocumented Tags

Using the GetProfileString() and ReadProfileString() Functions

Using the GetTempDirectory() Function

Using the GetTempFile() Function

Using the Tag

Using the CF_SetDataSourceUsername(), CF_GetDataSourceUsername(), CF_SetDataSourcePassword(), CF_SetODBCINI(), and CF_GetODBCINI() Functions

Using the CF_GetODBCDSN() Function

Using the CFusion_Encrypt() and CFusion_Decrypt() Functions

Summary

Solutions Fast Track

Frequently Asked Questions

Chapter 4 Securing Your ColdFusion Applications

Introduction

Cross-Site Scripting

URL Hacking

Validating Browser Input

Malformed Input

Validating Consistently from the "Hit List

Using

Using

Using and

Using (or Not Using)

Using

Web-Based File Upload Issues

Techniques to Protect Your Application when Accepting File Uploads

URL Session Variables

Session ID

Summary

Solutions Fast Track

Frequently Asked Questions

Chapter 5 The ColdFusion Development System

Introduction

Understanding the ColdFusion Application Server

Thread Pooling

Custom Memory Management

Page-based Applications

JIT Compiler

Database Connection Manager

Scheduling Engine

Indexing Engine

Distributed Objects

Understanding ColdFusion Studio

Setting Up FTP and RDS Servers

Thinking of ColdFusion as Part of a System

Securing Everything to Which ColdFusion Talks

Summary

Solutions Fast Track

Frequently Asked Questions

Chapter 6 Configuring ColdFusion Server Security

Introduction

Setting Up the ColdFusion Server Using "Basic Security

Employing Encryption under the Basic Security Setup

Authentication under the Basic Security Setup

Customizing Access Control under the Basic Security Setup

Accessing Server Administration under the Basic Security Setup

Setting Up the ColdFusion Server Using "Advanced Security

Employing Encryption under the Advanced Security Setup

Authentication under the Advanced Security Setup

Customizing Access Control under the Advanced Security Setup

Performance Considerations When Using Basic or Advanced Security

Caching Advanced Security Information

File and Data Source Access

Summary

Solutions Fast Track

Frequently Asked Questions

Chapter 7 Securing the ColdFusion Server after Installation

Introduction

What to Do with the Sample Applications

Reducing Uncontrolled Access

Choosing to Enable or Disable the RDS Server

Limiting Access to the RDS Server


Preiswert lesen


 
Bücher bei eBook.de entdecken.

 

Taschenbücher entdecken

Kunden, die diesen Artikel gekauft haben, kauften auch

Der Palazzo am See
eBook
von Sophia Cronbe…
Tödliche Camargue
- 10% **
eBook
von Cay Rademache…
Print-Ausgabe € 9,99
Bretonische Flut
- 13% **
eBook
von Jean-Luc Bann…
Print-Ausgabe € 14,99
tolino shine 2 HD
- 9% **
Hardware
Statt € 119,00

Kundenbewertungen zu Syngress „Hack Proofing Coldfusion: The Only Way to Stop a Hacker Is …

Noch keine Bewertungen vorhanden
Zur Rangliste der Rezensenten
Veröffentlichen Sie Ihre Kundenbewertung:
Kundenbewertung schreiben

Diese Artikel könnten Sie auch interessieren

Das Meer in deinem Namen
- 30% **
eBook
von Patricia Koel…
Print-Ausgabe € 9,99
Das Messias-Projekt
- 54% **
eBook
von Markus Ridder
Print-Ausgabe € 10,99
Harry Potter 1 und der Stein der Weisen. Schmuckausgabe
Buch (gebunden)
von Joanne K. Row…
tolino vision 4 HD
- 5% **
Hardware
Statt € 179,00
Gezeichnet
eBook
von Reinhard Klei…

Unsere Leistungen auf einen Klick

Unser Service für Sie

Zahlungsmethoden
Bequem, einfach und sicher mit eBook.de. mehr Infos akzeptierte Zahlungsarten: Überweisung, offene Rechnung,
Visa, Master Card, American Express, Paypal mehr Infos
Geprüfte Qualität
  • Schnelle Downloads
  • Datenschutz
  • Sichere Zahlung
  • SSL-Verschlüsselung
Servicehotline
+49 (0)40 4223 6096
Mo. - Fr. 8.00 - 20.00 Uhr
Sa. 10.00 - 18.00 Uhr
Chat
Ihre E-Mail-Adresse eintragen und kostenlos informiert werden:
* Alle Preise verstehen sich inkl. der gesetzlichen MwSt. Informationen über den Versand und anfallende Versandkosten finden Sie hier.
Bei als portofrei markierten Produkten bezieht sich dies nur auf den Versand innerhalb Deutschlands.

** im Vergleich zum dargestellten Vergleichspreis.
eBook.de - Meine Bücher immer dabei
eBook.de ist eine Marke der Hugendubel Digital GmbH & Co. KG
Folgen Sie uns unter: