Join Kevin Skoglund for an in-depth discussion in this video Regulating requests, part of Programming Foundations: Web Security.
…In this chapter, we will discuss filtering input and controlling output.…I'll provide general techniques and guideline…to help you avoid many security problems.…These are the best practices that will help you protect against…the most common attacks that we'll see in the following chapter.…We'll start by discussing how to regulate requests.…HTTP requests are the fundamental basics of everything we do on the web.…You send a request to a web server and it sends back a response.…Our first step in securing input to our application…is to be choosy about the requests that come in.…
We want to inspect the request before we even consider its content.…The first thing you'll want to do is regulate the request method.…There're two main types of request methods that you can receive.…One is a GET request, which would be if a URL is typed into a browser.…Or it might have been bookmarked previously.…Or clicked links that…come from other pages. Those are GET requests.…And then there's POST requests.…These are requests that come from web forms.…
This course is great for developers who want to secure their client's websites, and for anyone else who wants to learn more about web security.
- Why security matters
- What is a hacker?
- How to write a security policy
- Cross-site scripting (XSS)
- Cross-site request forgery (CSRF)
- SQL injection
- Session hijacking and fixation
- Passwords and encryption
- Secure credit card payments
Skill Level Beginner
1. Security Overview
2. General Security Principles
3. Filtering Input, Controlling Output
4. The Most Common Attacks
5. Encryption and User Authentication
6. Other Areas of Concern
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.