Pagina principaleGruppiConversazioniAltroStatistiche
Cerca nel Sito
Questo sito utilizza i cookies per fornire i nostri servizi, per migliorare le prestazioni, per analisi, e (per gli utenti che accedono senza fare login) per la pubblicità. Usando LibraryThing confermi di aver letto e capito le nostre condizioni di servizio e la politica sulla privacy. Il tuo uso del sito e dei servizi è soggetto a tali politiche e condizioni.

Risultati da Google Ricerca Libri

Fai clic su di un'immagine per andare a Google Ricerca Libri.
Sto caricando le informazioni...

Web Security for Developers: Real Threats, Practical Defense

di Malcolm McDonald

UtentiRecensioniPopolaritàMedia votiConversazioni
262893,355 (4)Nessuno
The world has changed. Today, every time you make a site live, you’re opening it up to attack. A first-time developer can easily be discouraged by the difficulties involved with properly securing a website. But have hope: an army of security researchers is out there discovering, documenting, and fixing security flaws. Thankfully, the tools you’ll need to secure your site are freely available and generally easy to use. Web Security for Developers will teach you how your websites are vulnerable to attack and how to protect them. Each chapter breaks down a major security vulnerability and explores a real-world attack, coupled with plenty of code to show you both the vulnerability and the fix. You’ll learn how to: •Protect against SQL injection attacks, malicious JavaScript, and cross-site request forgery •Add authentication and shape access control to protect accounts •Lock down user accounts to prevent attacks that rely on guessing passwords, stealing sessions, or escalating privileges •Implement encryption •Manage vulnerabilities in legacy code •Prevent information leaks that disclose vulnerabilities •Mitigate advanced attacks like malvertising and denial-of-service As you get stronger at identifying and fixing vulnerabilities, you’ll learn to deploy disciplined, secure code and become a better programmer along the way.… (altro)
tutti i membri
Utenti
Aggiunto di recente daanirudhgarg100, orcpac7, aaa1966, mcldch
Etichette
Consigli di LibraryThing
Liste
Nessuno
Ti piacerà?
Sto caricando le informazioni...

Iscriviti per consentire a LibraryThing di scoprire se ti piacerà questo libro.

Conversazioni (Su link)

Attualmente non vi sono conversazioni su questo libro.

Recensioni di utenti
data | voti
Mostra 2 di 2
This is a good beginner's level book for someone interested in learning more about IT security. ( )
  kerryp | Dec 7, 2020 |
Much has been and continues to be written on the topic of computer security, but a lot of that content is directed towards computer security professionals. Few resources exist that are written for software developers, by developers. In this work, McDonald seeks to answer the need for a comprehensive exposition on this topic. In this attempt, he succeeds in providing a clear and thorough introduction of what developers need to know about security.

The biggest advantage of this book is that it collects all a developer needs to know in one space. McDonald’s treatment does not go in too much detail for the audience, as in many security books. Instead, as the book’s subtitle suggests, it pragmatically focuses on how security principles apply to the art and science of programming.

This work is written for a general audience of programmers and not focused on one specific language. The author appears to be a Ruby developer as many of the examples are written in that language. However, knowledge of Ruby is not required to appreciate and learn from this book. Indeed, the vast majority of this book is pertinent to any language on any platform.

Despite these strengths, McDonald’s book exhibits some weakness as it contains very little cutting-edge material. It would have been nice to include towards the end a chapter or two on emerging concepts. Because of this, people who stay engaged with the state-of-the-art might find the book redundant and not worth their time.

Web Security for Developers is geared mainly for web developers who are in early-to-mid career. Despite the introduction’s claim that experienced programmers will fill in a few knowledge gaps, in truth, experienced programmers will find little new here. Nonetheless, this work fills a needed gap in the literature for all that programmers need to know about computer security concepts. This solid work should be relevant for years to come. ( )
  scottjpearson | Jul 31, 2020 |
data | voti
Mostra 2 di 2
?
Recensioni da fonti esterne
nessuna recensione | aggiungi una recensione
Altri autori
Relazioni tra serie ed opera
Premi e riconoscimenti
guarda la cronologia
Informazioni generali
Devi effettuare l'accesso per contribuire alle Informazioni generali.
Per maggiori spiegazioni, vedi la pagina di aiuto delle informazioni generali.
Titolo canonico
Titolo originale
Titoli alternativi
Data della prima edizione
Personaggi
Luoghi significativi
Eventi significativi
Film correlati
Epigrafe
Dedica
Incipit
Citazioni
Ultime parole
Nota di disambiguazione
Redattore editoriale
Elogi
Lingua originale
DDC/MDS Canonico
LCC canonico
Riferimenti

Risorse esterne che parlano di questo libro

Wikipedia in inglese

Nessuno

Descrizioni del libro
The world has changed. Today, every time you make a site live, you’re opening it up to attack. A first-time developer can easily be discouraged by the difficulties involved with properly securing a website. But have hope: an army of security researchers is out there discovering, documenting, and fixing security flaws. Thankfully, the tools you’ll need to secure your site are freely available and generally easy to use. Web Security for Developers will teach you how your websites are vulnerable to attack and how to protect them. Each chapter breaks down a major security vulnerability and explores a real-world attack, coupled with plenty of code to show you both the vulnerability and the fix. You’ll learn how to: •Protect against SQL injection attacks, malicious JavaScript, and cross-site request forgery •Add authentication and shape access control to protect accounts •Lock down user accounts to prevent attacks that rely on guessing passwords, stealing sessions, or escalating privileges •Implement encryption •Manage vulnerabilities in legacy code •Prevent information leaks that disclose vulnerabilities •Mitigate advanced attacks like malvertising and denial-of-service As you get stronger at identifying and fixing vulnerabilities, you’ll learn to deploy disciplined, secure code and become a better programmer along the way.
Descrizioni da biblioteche

Non sono state trovate descrizioni di biblioteche

?
Descrizione degli utenti di LibraryThing
Descrizione del libro
Riassunto haiku

Discussioni correnti

Nessuno

Copertine popolari

Link rapidi

Amazon.com (link diretto)
AbeBooks.it
Amazon Kindle (0 edizioni)
Audible (0 edizioni)
CD Audiobook (0 edizioni)
Google BooksSto caricando le informazioni...
WorldCat

Generi

Sistema Decimale Melvil (DDC)

005.8Information Computer Science; Knowledge and Systems Computer programming, programs, data, security Computer Security

Classificazione LC

TK5105.59Technology Electrical engineering. Electronics. Nuclear engineering Electrical engineering. Electronics. Nuclear Telecommunication

Voto

Media: (4)
0.5
1
1.5
2
2.5
3
3.5
4 3
4.5
5

Sei tu?

Diventa un autore di LibraryThing.

 

A proposito di | Contatto | LibraryThing.com | Privacy/Condizioni d'uso | Guida/FAQ | Blog | Negozio | APIs | TinyCat | Biblioteche di personaggi celebri | Recensori in anteprima | Informazioni generali | 205,359,455 libri! | Barra superiore: Sempre visibile
Copyright LibraryThing and/or members of LibraryThing, authors, publishers, libraries, cover designers, Amazon, Bol, Bruna, etc.