Deck 15: Web Application Vulnerabilities

In 2007 the average time between bringing an unsecured server (or client) onto the Internet, and its being infected by one of the thousands of circulating Internet worms, is less than 2 minutes.

A set of passwords is better than just one password because even the strongest password can be cracked, given sufficient time.

The majority of network traffic on the Web is encrypted.

It is a proven fact that outsiders perpetrate most computer crimes.

____________________ is very complicated and intended to supply the base for all subsequent application layer and presentation layer software.

A(n) _________________________ is a neutral zone between the private LAN and the public network of an organization.

___________________________________ facilities allow you to monitor all user activity on your private development machine and also to keep a record of Web server logs on a protected machine.

The most common source of Web-browser exploits is _________________________.

A(n) ____________________ is a small text file, stored on your computer by Web servers, that contains information about the last session when you visited the site.

What are some of the factors that lead to vulnerability of data and applications on the Web?

What are some of the tools used to exploit Web vulnerability?

What are some of the most important Web server vulnerabilities?