On Monday 09 August 2004 09:03, Shlomi Fish wrote: > On Monday 09 August 2004 00:47, you wrote: > > Hi list! > > > > In yesterday's lecture given by Shachar Shemesh about > > cross site scripting and sql injection problems in web applications. > > The examples where given by Shachar in PHP. > > I would like to know what would be the Perl equivalent of these issues > > and how can i pervent those problems from occuring? > > Where can i find related material on this issue? >
As always, when it comes to secure programming, I'd recommend: http://www.dwheeler.com/secure-programs/ It's a concentrated document explaining in detail security implications when writing in various programming languages and platforms. It explains concepts and gives guidelines for secure programming (CGIs and general dynamic pages included). IMO it's the best resource on the subject of secure programming. Eli -- Eli Kara Beyond Security Ltd. http://www.beyondsecurity.com/ http://www.securiteam.com/ The First Integrated Network and Web Application Vulnerability Scanner: http://www.beyondsecurity.com/webscan-wp.pdf ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
