Skip to main content

Securing web app

 

  • Use HTTPS - stops "man in middle" attack
  • Use load balancer - control internal vs external applications
  • Input validation mandatory. 
  • 2-factor authentication
  • Restrict failed attempt to avoid malicious logins
  • Captcha to avoid the bot.
  • a session should have timeout based on application criticality
  • re-verify login for critical data access 
  • Limit access rate to stop Denial of service attack. 
  • prevent SQL injections     ("select * from students where student_name =" + name + ";")
  • Encrypt data on 3rd party storage 
  • Hash the passwords 




Comments

Post a Comment

Popular posts from this blog

Car Parking Problem

There is n parking slots and n-1 car already parked. Lets say car parked with initial arrangement and we want to make the car to be parked to some other arrangement. Lets say n = 5, inital = free, 3, 4, 1, 2 desired = 1, free, 2, 4 ,3 Give an algorithm with minimum steps needed to get desired arrangement. Told by one of my friend and after a lot of search i really got a nice solution. I will post solution in comment part
3 comments
Read more

Median of Five Numbers

U have 5 NOs , X1,X2,X3,X4,X5 With minimum no. of comparisons we have to find a median. SWAP(X,Y) function is available to u . I have a answer of six comparisons and eight swaps....wait for people to find out by themselves.
1 comment
Read more

Merge two sorted array inplace

Given an integer array of which both first half and second half are sorted. Write a function to merge the two parts to create one single sorted array in place [do not use any extra space]. e.g. If input array is [1,3,6,8,-5,-2,3,8] It should be converted to: [-5,-2,1,3,3,6,8,8]
2 comments
Read more